Lines Matching refs:by

24 allows increased kernel security by disallowing the loading of unsigned modules
25 or modules signed with an invalid key.  Module signing increases security by
27 signature checking is done by the kernel so that it is not necessary to have
35 SHA-512 (the algorithm is selected by data in the signature).
42 The module signing facility is enabled by going to the "Enable Loadable Module
60      signature that can be verified by a public key in the kernel's possession
99      the OpenSSL ENGINE_pkcs11 is functional — a PKCS#11 URI as defined by
104      PKCS#11 token requries a PIN, this can be provided at build time by
111      additional certificates which will be included in the system keyring by
176 The kernel contains a ring of public keys that can be viewed by root.  They're
177 in a keyring called ".system_keyring" that can be seen by:
186 trusted certificates can be provided in a PEM-encoded file referenced by the
192 Finally, it is possible to add additional public keys by doing:
201 .system_keyring _if_ the new key's X.509 wrapper is validly signed by a key