Re: Authenticated Boot and Disk Encryption

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Authenticated Boot and Disk Encryption

From:	Ludovic Courtès
Subject:	Re: Authenticated Boot and Disk Encryption
Date:	Thu, 21 Oct 2021 21:28:35 +0200
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)

Hi Reza,

Reza Housseini <reza.housseini@gmail.com> skribis:

> I came across this blog post
> <https://0pointer.net/blog/authenticated-boot-and-disk-encryption-on-linux.html>
> and was wondering what is the state of authenticated boot and encryption in
> Guix System?

Nothing’s been done wrt. to “authenticated boot” AFAIK (I have
reservations about the concept).

Full disk encryption works but it’s done like in other distros, as
described in the article.  One big failure IMO is the fact that
nothing’s done upon suspend (when closing the laptop lid).  I believe
systemd-homed addresses that properly.

There’s a lot in this article, I’d suggest identifying specific bits to
see whether/how we can implement them in Guix!

Thanks,
Ludo’.

[Prev in Thread]

Current Thread

[Next in Thread]

Authenticated Boot and Disk Encryption, Reza Housseini, 2021/10/05
- Re: Authenticated Boot and Disk Encryption, Ludovic Courtès <=

Prev by Date: Re: Guix+Jenkins slides/video
Next by Date: Re: Test parallelism with CMake
Previous by thread: Authenticated Boot and Disk Encryption
Next by thread: Upgrade cl-hunchentoot to version 1.3.0
Index(es):
- Date
- Thread