What's new in Secure-K Lite 18.5
Jun 4, 2018
- Secure-K OS has moved it base operating system structures to Debian Stretch (it is
- built using the standard live-build framework, but the on-disk structure is deeply
- modified in order to allow kernel update, encrypted persistence, UEFI Secure boot and
- a cleartext data swap partition);
- Secure-K OS 18.5 makes use of a customized version of Linux 4.14.x and GNOME 3.22.
- New features:
- the filesystem encryption key is now defined by the user (key is static in the
- Lite version hence data encryption strength is here very low);
- anti-tampering measures are performed during the bootstrap (this is not available
- in the Lite version). System files' hashes are verified during the bootstrap and
- before the decryption key is asked to the user to open the LUKS partition.
- Just for example, this makes it impossible for a cracker (with phisical offline
- access to the key) to modify the filesystem.squashfs and modify its /etc/shadow file
- or install a backdoor and rebuid it on the key.
- So, with a user-defined key for filesystem encryption and the anti-tampering measures
- performed during the bootstrap, Secure-K OS can be fully considered a secure and
- segregated workspace for producing and storing one's important and secret data.
- And a safe and clean environment for critical on-line activities.