stboot
system-transparency | stboot | |
---|---|---|
2 | 3 | |
27 | 110 | |
- | 0.0% | |
0.0 | 8.0 | |
about 1 year ago | 6 months ago | |
Shell | Go | |
- | BSD 2-clause "Simplified" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
system-transparency
-
Mullvad: Moving our Encrypted DNS servers to run in RAM
They have open sourced a good deal of the infrastructure:
https://github.com/mullvad/system-transparency
- WireGuard Servers Running from RAM
stboot
- System Transparency: a security architecture for bare-metal servers
-
Mullvad: Moving our Encrypted DNS servers to run in RAM
More info about stboot is available here: https://www.system-transparency.org/
and here:https://git.glasklar.is/system-transparency/core/system-tran...
The second link talks about network boot mode and signature validation.
-
We have successfully completed our migration to RAM-only VPN infrastructure
This is really cool, you'd expect any VPN provider that cares about security and transparency to act like Mullvad. Some pour thousands of dollars into forcing influencers to say they care about security, while others focus on actually improving security.
And it's all open source btw. https://github.com/system-transparency/stboot
What are some alternatives?
Auditor - Hardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verification with support for alert emails. It uses hardware-backed keys and attestation support as the foundation and chains trust to the app for software checks.
nym - Nym provides strong network-level privacy against sophisticated end-to-end attackers, and anonymous transactions using blinded, re-randomizable, decentralized credentials.
AMDSEV - AMD Secure Encrypted Virtualization
dns-blocklists - Lists and configuration for our DNS blocking service