Mastodawn

Rackslab Jan 27

Lennart Poettering

RE: https://mastodon.social/@amutable/115967747219090945

Today, we announce Amutable, our ✨ new ✨ company. We – @blixtra, @brauner, @davidstrauss, @rodrigo_rata, @michaelvogt, @pothos, @zbyszek, @daandemeyer, @cyphar, @jrocha and yours truly – are building the 🚀 next generation of Linux systems, with integrity, determinism, and verification – every step of the way.

→ https://amutable.com/blog/introducing-amutable ←

#amutable #linux #systemd #⊼mutable #integrity

Miguel de Icaza ᯅ🍉Jan 27

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha @amutable congratulations folks! This is exciting!

Àlex Fiestas Jan 27

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha Best of luck!

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha Nice to see! Congratulations on taking the step and best of luck!

Jorge Castro Jan 27

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha

Fantastic, I'm glad someone is finally building this!

Elias Probst Jan 28

@jorge - exactly. Sometimes there are things you know should be done, but you never personally tackle them, because they're too big to take on and/or you just lack the skills.

It takes a team like @amutable to achieve something like this.

Berto Garcia Jan 27

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha good luck!!

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha This is great! Wishing you the best!

Daniel Lundin Jan 27

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha So awesome!

exitcode Jan 27

@blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha @pid_eins should we expect a new distro?

James Just James Jan 28

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha Wow congratulations all! Looking forward to the future.

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha what a line up! Rooting for you folks! Congrats on the announcement!

Till Kamppeter Jan 28

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha

Congratulations! This sounds exciting!

@pid_eins @blixtra @brauner @davidstrauss @rodrigo_rata @michaelvogt @pothos @zbyszek @daandemeyer @cyphar @jrocha Sounds interesting. Is the goal based on a threat model? Does "verifiable integrity to Linux systems" mean software and hardware? Or just software?

Zbigniew Jędrzejewski-Szmek Feb 1

The threat model is any exploit (or bug!) that leads to persistent modification of the software stored on disk. The idea is that after a reboot, you _know_ what software was started (or the attestation fails). The hardware is off-the-shelf standard stuff, only needs a TPM. This is about the integrity of the OS and its payload.

@zbyszek Thanks for the explanation. Software integrity is only one side of the coin. The other side is hardware and firmware - see "Bunnie" Huang with his Baochip or UEFI bootkits.