Design of a Trust System for FreeBSD

User Eric McCorkle discusses some security aspects of FreeBSD, notably signatures (executables, library, kernel) in his latest blog. This article is broken down in sections such as signed elf binaries, portable verification library, key management, etc. Read the whole...

[Blog] FreeBSD OS-Level Tamper-Resilience

User Eric McCorkle outlines his plan for a tamper-resilient FreeBSD system. Combined with GELI disk encryption, McCorkle goes over his thoughts on secure boot, secure suspend/resume, data protection, and more. UI’ve posted about my work on EFI GELI support. This...
The state of LibreSSL in FreeBSD

The state of LibreSSL in FreeBSD

This article by user Attila Györffy discusses the current direction of LibreSSL in FreeBSD. LibreSSL, forked from OpenSSL after the known Heartbleed vulnerability, is an open source implementation of the Secure Sockets Layer (SSL) protocol. As part of my ongoing...
[How-To] LetsEncrypt on FreeBSD

[How-To] LetsEncrypt on FreeBSD

This short tutorial by user LK shows us how to get LetEncrypt setup on FreeBSD. LetsEncrypt is a free, automated, and open certificate authority (CA) which provides users with DV certificates for SSL, enabling secure transfer of information through HTTPS. FreeBSD...