Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Linux Foundation

fs-verity - Native File-based Authenticity

Linux Foundation via YouTube

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a comprehensive conference talk on fs-verity, a native file-based authenticity mechanism for Linux file systems. Delve into the intricacies of validating individual file authenticity, its integration with the Integrity Measurement Architecture (IMA), and potential applications in container image content validation. Learn about the Android platform's use of dm-verity for system image protection and the need for incremental updates in critical components. Discover the technical aspects of file measurement, performance impacts, delayed verification, and forward error correction. Gain insights from Google engineers Michael Halcrow and Eric Biggers as they discuss hash firmware, dictionary structures, IO errors, and the concept of partial disk authentication.

Syllabus

Introduction
Background
Outline
Hash
Firmware
Dictionary structures
IO errors
Android verified boot
DM Verity
Partial disk authentication
fsverity
contents of a file
DMVerde
Data Fields
File Measurement
fsparity
Verification
File measurements
Performance impacts
Smaller files
Performance
Power consumption
Delayed verification
Forward error correction
Protecting against a man on the disc
attestation

Taught by

Linux Foundation

Reviews

Start your review of fs-verity - Native File-based Authenticity

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.