Guarding the kernel against unauthorised changes
By Richard Chirgwin 5 Feb 2018 The folk at OpenWall have called for assistance to create a security module to watch Linux kernels for suspicious activity.
In the company's explanation, the Linux Kernel Runtime Guard (LKRG) is described as a module that “attempts to post-detect and hopefully promptly respond to unauthorised modifications to the running Linux kernel (integrity checking) or to credentials (such as user IDs) of the running processes (exploit detection).”
Full Article.