翻訳と辞書
Words near each other
・ Tin(II) chloride
・ Tin(II) chloride (data page)
・ Tin(II) fluoride
・ Tin(II) hydroxide
・ Tin(II) iodide
・ Tin(II) oxide
・ Tin(II) sulfate
・ Tin(II) sulfide
・ Tin(IV) bromide
・ Tin(IV) chloride
・ Tin(IV) fluoride
・ Tin(IV) iodide
・ Tin(IV) sulfide
・ Tin, Ahar
・ Tin hat
Tin Hat Linux
・ Tin Hats
・ Tin Hau (constituency)
・ Tin Hau (disambiguation)
・ Tin Hau Food Square
・ Tin Hau Station
・ Tin Hau Temple Complex, Yau Ma Tei
・ Tin Hau Temple Road
・ Tin Hau Temple, Causeway Bay
・ Tin Hau Temple, Joss House Bay
・ Tin Hau temples in Hong Kong
・ Tin Hau, Hong Kong
・ Tin Heng Stop
・ Tin Hinan
・ Tin Hla


Dictionary Lists
翻訳と辞書 辞書検索 [ 開発暫定版 ]
スポンサード リンク

Tin Hat Linux : ウィキペディア英語版
Tin Hat Linux

Tin Hat is a Security-focused Linux distribution derived from Hardened Gentoo Linux. It aims to provide a very secure, stable, and fast desktop environment that lives purely in RAM.〔(【引用サイトリンク】title=Tin Hat )〕 Tin Hat boots from CD, or optionally from USB flash drive, but it does not mount any file system directly from the boot device.〔 Instead, Tin Hat employs a large SquashFS image from the boot device which expands into tmpfs upon booting. This makes for long boot times, but fast speeds during use.
== Design goal ==
The central design consideration in Tin Hat is to construct an operating system that can hide data from an attacker even if he has physical access to the computer.〔 Physical access to a computer with unencrypted filesystems does not secure the data and an attacker could easily retrieve the data. Encrypting the filesystem provides protection from such an attack, but many implementations of encryption do not hide the fact that data is encrypted on the filesystem. For example, the LUKS encryption system includes metadata which detail the block cipher and block cipher mode used in encryption. This information does not help the attacker decrypt the filesystem, but it does reveal that it contains encrypted data and not random data. However, Tin Hat stores its filesystem in the RAM, leaving no data in the computer's hard drive. If the user stores any data via a more permanent means than RAM, the encrypted data is indiscernible from random data.
Tin Hat's preferred method of encryption is via loop-aes v3.
Beyond these considerations, Tin Hat has to also protect against more common exploits based on networking or security holes in software. The hardening model chosen is PaX/Grsecurity which is already provided by the Hardened Gentoo project. Hardening of the kernel and the toolchain make most code born exploits less likely. A non-modular compiled kernel further frustrates the insertion of malicious kernel modules.

抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)
ウィキペディアで「Tin Hat Linux」の詳細全文を読む



スポンサード リンク
翻訳と辞書 : 翻訳のためのインターネットリソース

Copyright(C) kotoba.ne.jp 1997-2016. All Rights Reserved.