Interesting question on how to create same level of protection. On Windows I think the general idea for a bypass is find a vulnerable signed driver and exploit that, but Linux doesn't have the same paradigm for kernel modules as the Microsoft-signs-everything approach on Windows.