Oracle Updates TrenchBoot Secure Dynamic Launch Support For Linux

Written by Michael Larabel in Linux Security on 8 May 2023 at 06:07 AM EDT. Add A Comment
LINUX SECURITY
In development for several years now has been TrenchBoot as a framework for creating security engines to perform system launch integrity actions. This boot-time integrity framework continues advancing and this past week Oracle engineers posted their latest patches for the Linux kernel in providing dynamic launch support.

TrenchBoot is focused on enhancing system boot security and integrity and a big part of that is their Linux kernel integration for establishing a hardware root-of-trust measurement that works across Intel, AMD, and Arm hardware with each vendor's relevant technologies/standards (Intel TXT / AMD SKINIT / Arm DRTM).

With the new TrenchBoot Dynamic Launch v6 patches for Linux, there is now support for the new Secure Launch Resource Table that is for standardizing the information passed and forms an ABI for the pre/post-launch code, support for booting Linux through the EFI stub entry point, and various documentation updates.

Trenchboot


Those wanting to learn more about this updated secure dynamic launch support for the Linux kernel with TrenchBoot can see the v6 patch series. More information on the open-source project at large via TrenchBoot.org that continues to be led by Oracle, Apertus, and 3mdeb.
Add A Comment
Related News
Linux 6.9-rc6 To Fix Accidentally Disabling Mitigations By Default For Non-x86 CPUs
Linux BHI Mitigation Being Tweaked Following 12% Database Performance Hit
Linux 6.9-rc4 To Bring New Fixes For x86 Speculation Mitigations
Linux Kernel Patched For Branch History Injection "BHI" Intel CPU Vulnerability
GitHub Disables The XZ Repository Following Today's Malicious Disclosure
XZ Struck By Malicious Code That Could Allow Unauthorized Remote System Access
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
systemd Rolling Out "run0" As sudo Alternative
Fedora Linux 40 Available For Download As A Wonderful Upgrade
Microsoft Open-Sources MS-DOS 4.0 Under MIT License
Systemd 256-rc1 Brings A Huge Number Of New Features
NVIDIA Developer Opens Feature Pull Request For Open-Source NVK Driver
Rust-Based Coreutils 0.0.26 Increases Compatibility With GNU Coreutils
Ubuntu 24.04 LTS Downloads Now Available
Linux Mint Looks To Fork More GNOME Software, Make XApp More Independent