Securing the Linux Boot Process: From Start to Finish
Jakob Hagl, Oliver Mann, Martin Pirker
2021
Abstract
The security of the operating system is a prominent feature in today’s Linux distributions. A common security practice is to encrypt the hard drive, to protect the data at rest. The UEFI Forum released the secure boot specification, an optional boot process protocol that improves security during boot up on secure boot enabled hardware. A combination of secure boot with the Linux operating system, along with full disk encryption in an effort to implement maximum security is non-trivial. This paper explores the challenges of this undertaking and reports on a practical evaluation with five major Linux distributions, how far they support these security features by default and what can be improved manually.
DownloadPaper Citation
in Harvard Style
Hagl J., Mann O. and Pirker M. (2021). Securing the Linux Boot Process: From Start to Finish.In Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-491-6, pages 604-610. DOI: 10.5220/0010313906040610
in Bibtex Style
@conference{icissp21,
author={Jakob Hagl and Oliver Mann and Martin Pirker},
title={Securing the Linux Boot Process: From Start to Finish},
booktitle={Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2021},
pages={604-610},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010313906040610},
isbn={978-989-758-491-6},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Securing the Linux Boot Process: From Start to Finish
SN - 978-989-758-491-6
AU - Hagl J.
AU - Mann O.
AU - Pirker M.
PY - 2021
SP - 604
EP - 610
DO - 10.5220/0010313906040610