Security hardening for distribution kernels

A session at LinuxCon North America 2012

  • Corey Henderson

Wednesday 29th August, 2012

11:40am to 12:25pm (PST)

I will talk about hooking into pre-compiled distribution linux kernels to add security hardening. This allows for certain security frameworks to be used on kernels that are either 1) too old, 2) don't have certain config flags set, or 3) don't use non-mainline security patches. The primary example I'll be discussing is my implementation of "Trusted Path Execution" as a linux kernel module, the source code of which is here: https://github.com/cormander/tpe... . I may also demo installing AppArmor on a RHEL6 system via a kernel module, if I get the module stable before July.

The audience would be system administrators and developers who manage systems that they can not change the kernel on, or don't want to manage custom kernel builds. This is important because it allows access to kernel hardening to a lot of people who have their hands tied either by policy or lack of experience.

About the speaker

This person is speaking at this event.
Corey Henderson

Sign in to add slides, notes or videos to this session

Tell your friends!


Time 11:40am12:25pm PST

Date Wed 29th August 2012

Short URL


View the schedule


See something wrong?

Report an issue with this session