Enforcer is a Linux security module designed to help
improve integrity of a computer running Linux. The
Enforcer provides a subset of Tripwire-like functionality.
It runs continuously and as each protected file is opened
its SHA1 is calculated and compared to a previously
stored value. The Enforcer is designed to integrate with
TCPA hardware to provide a secure boot when booted
with a TCPA enabled boot loader. TCPA hardware can
protect secrets and other sensitive data (for example, the
secrets for an encrypted loopback file system) and bind
those secrets to specific software.
