IMA signatures for scalable attestation
I came across this paper from Stefan Berger on a hybrid appraisal (signing) and attestation (hashing) approach to making whitelist management easier. We should see if this code is open sourced. Maybe we can implement ima-sig in keylime without much difficulty.
Nabil Schear, Ph.D.
Senior Staff, Secure Resilient Systems and Technology Group
MIT Lincoln Laboratory, 244 Wood St, Lexington, MA 02420
Tel: 781-981-5744 Office: C-290F