Is in review. Gets merged once all the comments are addressed
Feel free to give feedback if you have time
@ansasaki is working on making configuration upgrades easier
Upgrade documentation is currently missing in Keylime. Let's add that
Discussion about proving parsing and policy evaluation as separate API
Reason behind this: there are use cases where the logs come from different places and the agent model does not really fit. This would allow other systems to use IMA and Measured Boot attestation without needing to implement all the parsing and policy implementation stuff.
Needs an enhancement proposal (gets created by @THS-on, when he has time)
Keylime's default TPM EK CA cert store
It tries to be user friendly therefore we will and already have also include CAs from cloud providers
TODO: add note and documentation on how to customize it for deployments.
Attendees
Time: 25/10/23 15:30 BST (https://www.timeanddate.com/worldclock/fixedtime.html?msg=Keylime+Meeting&iso=20231025T1530&p1=136&ah=1) Meeting link: https://uni-kiel.zoom-x.de/j/64409148003?pwd=bWNRRlVSVFB4cWgvdkFEbHJOTnF5UT09
Topics