TrenchBoot Progress For Adding More Security & Integrity To The Boot Process

Written by Michael Larabel in Free Software on 11 February 2024 at 06:49 AM EST. 11 Comments
FREE SOFTWARE
TrenchBoot has been in development for several years now by Oracle, 3mdeb, and other stakeholders for providing greater security and integrity to the Linux boot process via measured launch of the OS using a Dynamic Root of Trust Measurement (DRTM) backed by Intel Trusted Execution Technology (TXT) and AMD Secure Startup. Much progress was made over 2023 while more work is ahead in 2024 for furthering the TrenchBoot efforts.

Maciej Pijanowski and Jagannathan Raman presented at FOSDEM 2024 last weekend around the state of the TrenchBoot project. Upstreaming the TrenchBoot dynamic launch Linux kernel support remains an ongoing affair and the Intel TXT-enabled patches are up to their seventh iteration. An NLNet Foundation grant meanwhile was secured to work on TrenchBoot for AMD with an upstream focus.

TrenchBoot FOSDEM slide


Given recent work on TrenchBoot and also on Qubes OS on integrating the technology into its new "Anti-Evil Maid" (AEM) feature, some of their future work is to include UEFI support as well as greater hardware support.

Those wanting to learn more about TrenchBoot and its recent successes and forward-looking work can see the FOSDEM.org presentation material. Those wishing to learn more about the TrenchBoot project in general can visit the project site at TrenchBoot.org.
11 Comments
Related News
Servo Browser Engine Landed More Performance Optimizations In November
GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd
Llamafile 0.8.17 Brings New Web UI For This Easy-To-Distribute AI LLM Framework
Zrythm 1.0 Released For Powerful Open-Source Digital Audio Workstation
Blender 4.3 Released With AMD HIP-RT Ray-Tracing On Linux, Experimental Vulkan Backend
FreeCAD 1.0 Released With UI/UX Improvements, New Materials System
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts
Linus Torvalds Comes Out Against "Completely Broken" x86_64 Feature Levels
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
COSMIC Alpha 4 Released For System76's Rust-Based Desktop
Vulkan Video Now Enabled By Default For Radeon VCN2/VCN3 Hardware On Linux
Rustls Multi-Threaded Performance Is Battering OpenSSL
Fedora 42 Aims To Enhance The Windows Subsystem For Linux Experience
KDE Starts December By Landing A Number Of New Features