| Mimi Zohar | 3323eec | 2009-02-04 09:06:58 -0500 | [diff] [blame] | 1 | # IBM Integrity Measurement Architecture |
| 2 | # |
| 3 | config IMA |
| 4 | bool "Integrity Measurement Architecture(IMA)" |
| Mimi Zohar | 6c21a7f | 2009-10-22 17:30:13 -0400 | [diff] [blame] | 5 | depends on SECURITY |
| Mimi Zohar | f381c27 | 2011-03-09 14:13:22 -0500 | [diff] [blame] | 6 | select INTEGRITY |
| Mimi Zohar | 3323eec | 2009-02-04 09:06:58 -0500 | [diff] [blame] | 7 | select SECURITYFS |
| 8 | select CRYPTO |
| 9 | select CRYPTO_HMAC |
| 10 | select CRYPTO_MD5 |
| 11 | select CRYPTO_SHA1 |
| Fabio Estevam | f4a0391 | 2012-01-05 12:49:54 -0200 | [diff] [blame] | 12 | select TCG_TPM if HAS_IOMEM && !UML |
| Randy Dunlap | a69f158 | 2012-02-24 11:28:05 -0800 | [diff] [blame] | 13 | select TCG_TIS if TCG_TPM && X86 |
| Mimi Zohar | 3323eec | 2009-02-04 09:06:58 -0500 | [diff] [blame] | 14 | help |
| 15 | The Trusted Computing Group(TCG) runtime Integrity |
| 16 | Measurement Architecture(IMA) maintains a list of hash |
| 17 | values of executables and other sensitive system files, |
| 18 | as they are read or executed. If an attacker manages |
| 19 | to change the contents of an important system file |
| 20 | being measured, we can tell. |
| 21 | |
| 22 | If your system has a TPM chip, then IMA also maintains |
| 23 | an aggregate integrity value over this list inside the |
| 24 | TPM hardware, so that the TPM can prove to a third party |
| 25 | whether or not critical system files have been modified. |
| 26 | Read <http://www.usenix.org/events/sec04/tech/sailer.html> |
| 27 | to learn more about IMA. |
| 28 | If unsure, say N. |
| 29 | |
| 30 | config IMA_MEASURE_PCR_IDX |
| 31 | int |
| 32 | depends on IMA |
| 33 | range 8 14 |
| 34 | default 10 |
| 35 | help |
| 36 | IMA_MEASURE_PCR_IDX determines the TPM PCR register index |
| 37 | that IMA uses to maintain the integrity aggregate of the |
| 38 | measurement list. If unsure, use the default 10. |
| 39 | |
| 40 | config IMA_AUDIT |
| Dmitry Kasatkin | 417c6c8 | 2012-06-25 12:18:21 +0300 | [diff] [blame^] | 41 | bool "Enables auditing support" |
| Mimi Zohar | 3323eec | 2009-02-04 09:06:58 -0500 | [diff] [blame] | 42 | depends on IMA |
| Dmitry Kasatkin | 417c6c8 | 2012-06-25 12:18:21 +0300 | [diff] [blame^] | 43 | depends on AUDIT |
| Mimi Zohar | 3323eec | 2009-02-04 09:06:58 -0500 | [diff] [blame] | 44 | default y |
| 45 | help |
| 46 | This option adds a kernel parameter 'ima_audit', which |
| 47 | allows informational auditing messages to be enabled |
| 48 | at boot. If this option is selected, informational integrity |
| 49 | auditing messages can be enabled with 'ima_audit=1' on |
| 50 | the kernel command line. |
| 51 | |
| Mimi Zohar | 4af4662 | 2009-02-04 09:07:00 -0500 | [diff] [blame] | 52 | config IMA_LSM_RULES |
| 53 | bool |
| Randy Dunlap | b53fab9 | 2009-02-12 09:54:14 -0800 | [diff] [blame] | 54 | depends on IMA && AUDIT && (SECURITY_SELINUX || SECURITY_SMACK) |
| Mimi Zohar | 4af4662 | 2009-02-04 09:07:00 -0500 | [diff] [blame] | 55 | default y |
| 56 | help |
| Randy Dunlap | b53fab9 | 2009-02-12 09:54:14 -0800 | [diff] [blame] | 57 | Disabling this option will disregard LSM based policy rules. |