IMA signatures for scalable attestation


Nabil Schear
 

I came across this paper from Stefan Berger on a hybrid appraisal (signing) and attestation (hashing) approach to making whitelist management easier.  We should see if this code is open sourced.  Maybe we can implement ima-sig in keylime without much difficulty.

 

Best,

-Nabil

 

--

Nabil Schear, Ph.D.               

Senior Staff, Secure Resilient Systems and Technology Group

MIT Lincoln Laboratory, 244 Wood St, Lexington, MA 02420

Tel: 781-981-5744   Office: C-290F