Overall Linux Integrity Subsystem, composed of a number of related components, including in-kernel IMA/EVM along with concept of trusted and encrypted keys. Integrity here means not just unchanged, but "unchangeable", or "immutable" and it requires a system wide "Root of Trust" to ensure this. In the demo, we use Integrity Function modules to showcase how to protect against both On-line & Off-line tampering attempts with Linux Integrity Management.