Some more I found in @danderson post: Ideas for a 'ideal' nix-based distro - #11 by danderson?
- system integrity (dm-crypt + dm-integrity + TPM)
- systemd’s TPM-bound credential storage
- remote attestation
- rapid build & distribution of security fixes
3 Likes