Random Entry: SQL injections continue
< Patch Management @ SecureWorld conference | Detecting Naughty Processes in Windows >

Cryptographic Verification of Binaries

I just read Susan Bradley's post asking why we don't use a program hashes to only allow desktop's to run certain binaries. This got me thinking about my friend and lab mate Yusuf's project, "Kernel-based Cryptographic Pre-execution Validation of ELF Object Code". His project looks to be very promising and a hugely usefull tool for any organisation running *nix boxes. Imagine only letting binaries that have been signed by the IT dept run. He is still in the early stages but making good progress. As an extension it would probally be fairly trivial to do what Susan is asking and only allow binaries with certain hashes run. I will ask him.

Thursday, October 28. 2004
Posted by Dominic White in Security
Comments (0) | Trackbacks (0)

Trackbacks

Trackback specific URI for this entry

No Trackbacks

Comments

Display comments as (Linear | Threaded)

No comments

Add Comment

Name
Email
Homepage
In reply to
Comment	E-Mail addresses will not be displayed and will only be used for E-Mail notifications. To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly. Enter the string from the spam-prevention image above:
	Remember Information? Subscribe to this entry