Securing the Linux Boot Process: From Start to Finish

Jakob Hagl, Oliver Mann, Martin Pirker

2021

Abstract

The security of the operating system is a prominent feature in today’s Linux distributions. A common security practice is to encrypt the hard drive, to protect the data at rest. The UEFI Forum released the secure boot specification, an optional boot process protocol that improves security during boot up on secure boot enabled hardware. A combination of secure boot with the Linux operating system, along with full disk encryption in an effort to implement maximum security is non-trivial. This paper explores the challenges of this undertaking and reports on a practical evaluation with five major Linux distributions, how far they support these security features by default and what can be improved manually.

Download


Paper Citation


in Harvard Style

Hagl J., Mann O. and Pirker M. (2021). Securing the Linux Boot Process: From Start to Finish.In Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-491-6, pages 604-610. DOI: 10.5220/0010313906040610


in Bibtex Style

@conference{icissp21,
author={Jakob Hagl and Oliver Mann and Martin Pirker},
title={Securing the Linux Boot Process: From Start to Finish},
booktitle={Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2021},
pages={604-610},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010313906040610},
isbn={978-989-758-491-6},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Securing the Linux Boot Process: From Start to Finish
SN - 978-989-758-491-6
AU - Hagl J.
AU - Mann O.
AU - Pirker M.
PY - 2021
SP - 604
EP - 610
DO - 10.5220/0010313906040610