Bootstrap & Maintain Trust on the Edge / Cloud and IoT.
Keylime was accepted to CNCF on September 22, 2020 and is at the Sandbox project maturity level.
Some significant progress in @KeylimeProject
@KeylimeProject and @projectsigstore integration outlined by lily sturmann.
@m_peters explains durable / offline OS integrity state capture generated by @KeylimeProject and stored within @projectsigstore rekor.
Never really dug into fs-verity before. It builds an ickle merkle tree for every file. Sounds expensive, but seems to be very performant. IMA can measure fs-verity signatures, so @KeylimeProject should be able to remote attest config files etc (not tested it yet).
Come check out Keylime at #osssummit with a talk by @m_peters and Lily Sturmann - 4:35pm - 5:15pm on Level 3.
Heading to the #OSSummit , come and listen to Keylime developers Lily Sturmann and @m_peters discuss continuous remote attestation with keylime
ANNOUNCEMENT: Version 6.3.2 of keylime has been tagged and released - https://t.co/VZCrgOmzrT… - More new contributors, more bug fixes, more/better docs and more stability.