Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1756656AbYLCXay (ORCPT ); Wed, 3 Dec 2008 18:30:54 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1751987AbYLCXam (ORCPT ); Wed, 3 Dec 2008 18:30:42 -0500 Received: from tundra.namei.org ([65.99.196.166]:57790 "EHLO tundra.namei.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751822AbYLCXal (ORCPT ); Wed, 3 Dec 2008 18:30:41 -0500 Date: Thu, 4 Dec 2008 10:29:39 +1100 (EST) From: James Morris To: Andrew Morton cc: Mimi Zohar , linux-kernel@vger.kernel.org, Christoph Hellwig , viro@ZenIV.linux.org.uk, safford@watson.ibm.com, serue@linux.vnet.ibm.com Subject: Re: [PATCH 0/4] integrity In-Reply-To: <20081114141813.71a0050a.akpm@linux-foundation.org> Message-ID: References: <20081114141813.71a0050a.akpm@linux-foundation.org> User-Agent: Alpine 1.10 (LRH 962 2008-03-14) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1268 Lines: 36 On Fri, 14 Nov 2008, Andrew Morton wrote: > One thing which I cannot say, and which is quite important: how useful > will all of this be to our users? Are people asking for it? Apparently, some government users are, and there's a DoD decree which requires new equipment to include TPM hardware where possible: http://iase.disa.mil/policy-guidance/dod-dar-tpm-decree07-03-07.pdf This is to support encryption of data at rest, and for "device authentication" (requiring remote attestation of system integrity). It's not clear to me yet how compelling this will be for general-case users. > Are > people likely to enable and use it? Are they even likely to understand > it? ;) Are any large/important customers asking for it? Are distros > likely to enable and support it? I believe that TPM is in "tech preview" in RHEL 5.2, and that there is a desire to integrate it more fully with the OS via TCG software such as Trousers: http://trousers.sourceforge.net/ - James -- James Morris -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/