Microsoft has revealed details about a new project it has been working on for Linux kernel. From a report: Named Integrity Policy Enforcement – or IPE – the project is a Linux security module (LSM). LSMs are optional add-ons for the Linux kernel that enable additional security features. According to a documentation page published on Monday, IPE is Microsoft’s attempt to solve the code integrity problem for Linux – an operating system the company broadly uses in its Azure cloud service. On Linux systems where IPE is enabled, system administrators can create a list of binaries that are allowed to execute and then add the verification attributes the kernel needs to check for each binary before allowing it to run. If binaries have been altered by an attacker, IPE can block the execution of the malicious code.
Related topics
| Topic | Replies | Views | Last Activity | |
|---|---|---|---|---|
| 'Windows Subsystem for Linux 2' Will Include a Microsoft-Written Linux Kernel | 0 | 672 | March 16, 2020 | |
| Microsoft Is Adding Linux, Android, and Firmware Protections To Windows | 0 | 850 | June 24, 2020 | |
| Microsoft Submits Linux Kernel Patches to Make Linux Run as Root Partition on Hyper-V | 0 | 792 | September 20, 2020 | |
| Microsoft to Move Security Vendors Out of Windows Kernel: Major Changes Ahead 🔒 | 0 | 73 | September 13, 2024 | |
| Microsoft Releases Chromium-Based Edge Preview For Linux | 1 | 883 | October 22, 2020 |
!