Linux Foundation’s secure kernel repository with two-factor authentication

Aug

20

2014

Will introduce two-factor authentication for developers who have access to the source code of the Linux kernel. Linux Foundation For this purpose, among others, the so-called YubiKey token used. The measure follows three years after a burglary at Kernel.org.

In September 2011 Kernel.org, became the site where the source code for the Linux kernel is installed cracked . It OpenSSH files were modified and became a trojan installed. The cleaning operation by the administrators took a lot of time and it was decided to increase the security level. Significantly

A first step was the introduction of ssh-keys instead of passwords, but the Linux Foundation wanted a second security blow hit by the introduction of two-factor authentication for developers who commit direct code for the Linux kernel in the git repositories of Kernel.org. This was done, inter alia, for the YubiKey, a hardware token that is similar to, for example, the RSA SecurID-key. The manufacturer of the YubiKey has a hundred tokens donated to the Linux Foundation. The implementation of two-factor authentication is now in full swing and will soon be mandatory, reports ZDnet.

Kernel.org also uses software-based two-factor authentication. Both the hardware and the software protection layer is based on open IETF protocols, such as the one-time password algorithm and totp standard. For not always having to enter passwords and codes kernel developers can take up to thirty days on a whitelist set their IP address.

YubiKey

Viewing:-134

In: Technology & Gadgets Asked By: [17584 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »