What is Linux kernel keystore and why you should use it in your next application - Ignat Korchagin

Learn about the Linux kernel keystore, a secure way to manage and protect cryptographic keys, featuring key rings, APIs, and features for secure data protection and secret sharing.

Key takeaways
  • The Linux kernel key store provides a secure way to manage and protect cryptographic keys.
  • It is a centralized system that keeps track of key rings and keys, which can be used to encrypt and decrypt data.
  • Key rings are collections of keys that can be used to access a specific resource or perform a specific action.
  • The key store is implemented as a kernel module and provides a set of APIs for userspace applications to access and use the keys.
  • The key store provides features such as key lifetime management, access control lists, and support for different key types, including symmetric and asymmetric keys.
  • The key store is designed to be modular and supports different key management systems, including Hardware Security Modules (HSMs) and Kernel-based secure modules (KMS).
  • The key store provides a secure way to share secrets between applications and can be used to protect sensitive data.
  • The key store is an important feature of the Linux kernel and provides a secure way to manage and protect cryptographic keys.

More talks

PostgreSQL at low Level: stay curious! | Dmitrii Dolgov

MRMCD2024 Rust in the Linux Kernel - A Status Check

DPC2023: Building the World: the story behind Wolfi, the Linux undistro built for containers

Trace Me if You Can: Bypassing Linux Syscall Tracing

Mastering the Linux Command Line – Bert Jan Schrijver

How to Build a Distributed & Secure Database Ecosystem with PostgreSQL - Trista Pan - PGCon 2022

EH21 - Democratizing how we access networks through a universal Router

Into the hive of eBPF! by Mohammed Aboullaite