SlideShare a Scribd company logo

Code Signing with CPK

Z
Zhi Guan

This document discusses code signing, which involves digitally signing executables and scripts to confirm the software author and ensure the code has not been altered. Code signing can ensure code integrity, identify the source, and determine if code is trustworthy for a purpose. The architecture involves a code signing tool, kernel module to check signatures, and user-space daemon called by the kernel module. Communication between kernel and user space uses techniques like system calls, ioctl, proc filesystem, and netlink sockets.

Technology
1 of 14
Downloaded 19 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK
Code Signing with CPK

More Related Content

PDF
The Dark Side of PowerShell by George Dobrea
EC-Council
 
PDF
ReCertifying Active Directory
Will Schroeder
 
PPTX
Bypass Security Checking with Frida
Satria Ady Pradana
 
PDF
XML Interfaces to the popular Nessus Scanner
Network Intelligence India
 
PPTX
Fuzzing | Null OWASP Mumbai | 2016 June
nullowaspmumbai
 
PDF
BlueHat v18 || Return of the kernel rootkit malware (on windows 10)
BlueHat Security Conference
 
PDF
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
Shakacon
 
PPTX
BlueHat v17 || Raising the Bar: New Hardware Primitives for Exploit Mitigations
BlueHat Security Conference
 
The Dark Side of PowerShell by George Dobrea
EC-Council
 
ReCertifying Active Directory
Will Schroeder
 
Bypass Security Checking with Frida
Satria Ady Pradana
 
XML Interfaces to the popular Nessus Scanner
Network Intelligence India
 
Fuzzing | Null OWASP Mumbai | 2016 June
nullowaspmumbai
 
BlueHat v18 || Return of the kernel rootkit malware (on windows 10)
BlueHat Security Conference
 
Red vs Blue- Modern Atice Directory Attacks, Detection & Protection by Sean M...
Shakacon
 
BlueHat v17 || Raising the Bar: New Hardware Primitives for Exploit Mitigations
BlueHat Security Conference
 

What's hot (20)

PPTX
DFIR Austin Training (Feb 2020): Remote Access & Deploying Agents
Christopher Gerritz
 
PDF
XPDS16: XSM-Flask, current limitations and Ongoing work. - Anshul Makkar, Ct...
The Linux Foundation
 
PDF
Nguyen Duc Thinh - Docker security in Dev Ops environment 2.0
Security Bootcamp
 
PDF
XPDDS19: Client Virtualization Toolstack in Go - Nick Rosbrook & Brendan Kerr...
The Linux Foundation
 
PPT
Open Source KMIP Implementation
sedukull
 
PPTX
Malware for Red Team
Satria Ady Pradana
 
PDF
SpecterOps Webinar Week - Kerberoasting Revisisted
Will Schroeder
 
PPTX
Nagios Conference 2012 - Eric Loyd - Nagios Implementation Case Eastman Kodak...
Nagios
 
PDF
Windows server hardening 1
Frank Avila Zapata
 
PDF
CNIT 128 6. Analyzing Android Applications (Part 3 of 3)
Sam Bowne
 
PDF
Hacking into your containers, and how to stop it!
Eric Smalling
 
PDF
Silabus Training Reverse Engineering
Satria Ady Pradana
 
PDF
June 2014 - IPC in android
BlrDroid
 
PDF
Platform Security Summit 18: Xen Security Weather Report 2018
The Linux Foundation
 
PDF
SBC 2012 - Malware Memory Forensics (Nguyễn Chấn Việt)
Security Bootcamp
 
PDF
CNIT 128 7. Attacking Android Applications (Part 3)
Sam Bowne
 
PPTX
µ-Xen
Lars Kurth
 
PDF
XPDDS19: How TrenchBoot is Enabling Measured Launch for Open-Source Platform ...
The Linux Foundation
 
PPTX
BlueHat 2014 - The Attacker's View of Windows Authentication and Post Exploit...
Benjamin Delpy
 
PPTX
BlueHat v17 || Securing Windows Defender Application Guard
BlueHat Security Conference
 
DFIR Austin Training (Feb 2020): Remote Access & Deploying Agents
Christopher Gerritz
 
XPDS16: XSM-Flask, current limitations and Ongoing work. - Anshul Makkar, Ct...
The Linux Foundation
 
Nguyen Duc Thinh - Docker security in Dev Ops environment 2.0
Security Bootcamp
 
XPDDS19: Client Virtualization Toolstack in Go - Nick Rosbrook & Brendan Kerr...
The Linux Foundation
 
Open Source KMIP Implementation
sedukull
 
Malware for Red Team
Satria Ady Pradana
 
SpecterOps Webinar Week - Kerberoasting Revisisted
Will Schroeder
 
Nagios Conference 2012 - Eric Loyd - Nagios Implementation Case Eastman Kodak...
Nagios
 
Windows server hardening 1
Frank Avila Zapata
 
CNIT 128 6. Analyzing Android Applications (Part 3 of 3)
Sam Bowne
 
Hacking into your containers, and how to stop it!
Eric Smalling
 
Silabus Training Reverse Engineering
Satria Ady Pradana
 
June 2014 - IPC in android
BlrDroid
 
Platform Security Summit 18: Xen Security Weather Report 2018
The Linux Foundation
 
SBC 2012 - Malware Memory Forensics (Nguyễn Chấn Việt)
Security Bootcamp
 
CNIT 128 7. Attacking Android Applications (Part 3)
Sam Bowne
 
µ-Xen
Lars Kurth
 
XPDDS19: How TrenchBoot is Enabling Measured Launch for Open-Source Platform ...
The Linux Foundation
 
BlueHat 2014 - The Attacker's View of Windows Authentication and Post Exploit...
Benjamin Delpy
 
BlueHat v17 || Securing Windows Defender Application Guard
BlueHat Security Conference
 
Ad

Viewers also liked (20)

PDF
Cloud Foundry Open Tour India 2012 , Keynote
rajdeep
 
PDF
MidoNet deep dive
Taku Fukushima
 
PDF
Introduction to MidoNet
Taku Fukushima
 
PDF
Gunosy.go #4 go
Taku Fukushima
 
PPTX
Openstack meetup-pune-aug22-overview
rajdeep
 
PDF
RubyKaigi2014レポート
gree_tech
 
PDF
Om
Taku Fukushima
 
PDF
Cloudfoundry Overview
rajdeep
 
PDF
rtnetlink
Taku Fukushima
 
PPTX
Openstack Overview
rajdeep
 
PPTX
VMware Hybrid Cloud Service - Overview
rajdeep
 
KEY
Play Support in Cloud Foundry
rajdeep
 
PPTX
Docker 1.5
rajdeep
 
PDF
Managing Activity Backstack
rajdeep
 
PDF
Container Orchestration Integration: OpenStack Kuryr
Taku Fukushima
 
PDF
Cloud Foundry Architecture and Overview
rajdeep
 
PDF
Aura Framework Overview
rajdeep
 
PDF
Open vSwitch의 Vendor Extension 구현
Seung-Hoon Baek
 
PPT
Introduction to Google App Engine
rajdeep
 
PDF
Open VSwitch .. Use it for your day to day needs
rranjithrajaram
 
Cloud Foundry Open Tour India 2012 , Keynote
rajdeep
 
MidoNet deep dive
Taku Fukushima
 
Introduction to MidoNet
Taku Fukushima
 
Gunosy.go #4 go
Taku Fukushima
 
Openstack meetup-pune-aug22-overview
rajdeep
 
RubyKaigi2014レポート
gree_tech
 
Om
Taku Fukushima
 
Cloudfoundry Overview
rajdeep
 
rtnetlink
Taku Fukushima
 
Openstack Overview
rajdeep
 
VMware Hybrid Cloud Service - Overview
rajdeep
 
Play Support in Cloud Foundry
rajdeep
 
Docker 1.5
rajdeep
 
Managing Activity Backstack
rajdeep
 
Container Orchestration Integration: OpenStack Kuryr
Taku Fukushima
 
Cloud Foundry Architecture and Overview
rajdeep
 
Aura Framework Overview
rajdeep
 
Open vSwitch의 Vendor Extension 구현
Seung-Hoon Baek
 
Introduction to Google App Engine
rajdeep
 
Open VSwitch .. Use it for your day to day needs
rranjithrajaram
 
Ad

Similar to Code Signing with CPK (20)

PDF
Typhoon Managed Execution Toolkit
Dimitry Snezhkov
 
PPTX
Reverse Engineering.pptx
Sameer Sapra
 
PDF
Thick Application Penetration Testing: Crash Course
Scott Sutherland
 
PPTX
Build Time Hacking
Mohammed Tanveer
 
PDF
Bypass_AV-EDR.pdf
Farouk2nd
 
PPTX
Embedded System on design web development.pptx
Siddubiradar26
 
PDF
Thick Application Penetration Testing - A Crash Course
NetSPI
 
PDF
Abusing bleeding edge web standards for appsec glory
Priyanka Aash
 
PPT
.NET Debugging Tips and Techniques
Bala Subra
 
PPT
.Net Debugging Techniques
Bala Subra
 
PPTX
How to do Cryptography right in Android Part Two
Arash Ramez
 
PPTX
Developing for Industrial IoT with Linux OS on DragonBoard™ 410c: Session 4
Qualcomm Developer Network
 
PPTX
Hacker bootcamp
Gregory Hanis
 
PDF
Meetup DotNetCode Owasp
dotnetcode
 
PPTX
HAVOC-Workshop-Slides.pptx
seed4mexyz
 
PDF
Derbycon - The Unintended Risks of Trusting Active Directory
Will Schroeder
 
PDF
How-To Find Malicious Backdoors and Business Logic Vulnerabilities in Your Code
DevOps.com
 
PDF
Triangle InfoSecCon - Detecting Certified Pre-Owned Software and Devices
Tyler Shields
 
PDF
The Future of Security and Productivity in Our Newly Remote World
DevOps.com
 
PPTX
Owning computers without shell access dark
Royce Davis
 
Typhoon Managed Execution Toolkit
Dimitry Snezhkov
 
Reverse Engineering.pptx
Sameer Sapra
 
Thick Application Penetration Testing: Crash Course
Scott Sutherland
 
Build Time Hacking
Mohammed Tanveer
 
Bypass_AV-EDR.pdf
Farouk2nd
 
Embedded System on design web development.pptx
Siddubiradar26
 
Thick Application Penetration Testing - A Crash Course
NetSPI
 
Abusing bleeding edge web standards for appsec glory
Priyanka Aash
 
.NET Debugging Tips and Techniques
Bala Subra
 
.Net Debugging Techniques
Bala Subra
 
How to do Cryptography right in Android Part Two
Arash Ramez
 
Developing for Industrial IoT with Linux OS on DragonBoard™ 410c: Session 4
Qualcomm Developer Network
 
Hacker bootcamp
Gregory Hanis
 
Meetup DotNetCode Owasp
dotnetcode
 
HAVOC-Workshop-Slides.pptx
seed4mexyz
 
Derbycon - The Unintended Risks of Trusting Active Directory
Will Schroeder
 
How-To Find Malicious Backdoors and Business Logic Vulnerabilities in Your Code
DevOps.com
 
Triangle InfoSecCon - Detecting Certified Pre-Owned Software and Devices
Tyler Shields
 
The Future of Security and Productivity in Our Newly Remote World
DevOps.com
 
Owning computers without shell access dark
Royce Davis
 

More from Zhi Guan (11)

PPT
USB Token Design and Implementation
Zhi Guan
 
PDF
CPK Theory And Parctice
Zhi Guan
 
PDF
CPK Cryptosystem In Solaris
Zhi Guan
 
PDF
Easy CPK
Zhi Guan
 
PDF
Graphical Passwords
Zhi Guan
 
PDF
CPK in Eurocrypt 2007 Rump Session
Zhi Guan
 
PDF
A Survey of Identity-Based Encryption
Zhi Guan
 
PDF
Ph D Proposal, Cloud Computing Security
Zhi Guan
 
PDF
Red Office Documents Security Proposal
Zhi Guan
 
PDF
ICDCS‘08 WebIBC
Zhi Guan
 
PDF
Crypto With OpenSSL
Zhi Guan
 
USB Token Design and Implementation
Zhi Guan
 
CPK Theory And Parctice
Zhi Guan
 
CPK Cryptosystem In Solaris
Zhi Guan
 
Easy CPK
Zhi Guan
 
Graphical Passwords
Zhi Guan
 
CPK in Eurocrypt 2007 Rump Session
Zhi Guan
 
A Survey of Identity-Based Encryption
Zhi Guan
 
Ph D Proposal, Cloud Computing Security
Zhi Guan
 
Red Office Documents Security Proposal
Zhi Guan
 
ICDCS‘08 WebIBC
Zhi Guan
 
Crypto With OpenSSL
Zhi Guan
 

Recently uploaded (20)

PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Getting Started with Data Integration: FME Form 101
Safe Software
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PDF
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
PDF
Accuracy of neural networks in brain wave diagnosis of schizophrenia
IAESIJAI
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Getting Started with Data Integration: FME Form 101
Safe Software
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
Accuracy of neural networks in brain wave diagnosis of schizophrenia
IAESIJAI
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
Teaching material agriculture food technology
LiaRayya
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Spectroscopy.pptx food analysis technology
nawahassan45