From owner-freebsd-security Mon May 17 6:38:30 1999 Delivered-To: freebsd-security@freebsd.org Received: from adelphi.physics.adelaide.edu.au (adelphi.physics.adelaide.edu.au [129.127.36.247]) by hub.freebsd.org (Postfix) with ESMTP id 8374914F8E for ; Mon, 17 May 1999 06:38:26 -0700 (PDT) (envelope-from kkennawa@physics.adelaide.edu.au) Received: from bragg (bragg [129.127.36.34]) by adelphi.physics.adelaide.edu.au (8.8.8/8.8.8/UofA-1.5) with SMTP id XAA26566; Mon, 17 May 1999 23:08:25 +0930 (CST) Received: from localhost by bragg; (5.65/1.1.8.2/05Aug95-0227PM) id AA23054; Mon, 17 May 1999 23:09:13 +0930 Date: Mon, 17 May 1999 23:09:09 +0930 (CST) From: Kris Kennaway X-Sender: kkennawa@bragg To: Adam Shostack Cc: Adam Shostack , nr1@ihug.co.nz, freebsd-security@FreeBSD.ORG Subject: Re: secure backup In-Reply-To: <19990517093143.B2322@weathership.homeport.org> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 17 May 1999, Adam Shostack wrote: > If the tape is unreliable, and you lose a few bits of a plaintext > file, you've lost a few bits. If its a few bits of an encrypted and > compressed file, you may lose the whole file. Yes, but the question is whether tapes do this at all. The normal use of a backup tape (preserving a perfect copy of everything you send to it) is ruined if tapes are dropping bits - I don't think you'd see this unless your hardware was bad, in which case any relatively lightweight encoding method is likely to be in trouble too. The best you could do to guard against this would be to either run your encrypted data stream through an error-correcting code filter (I don't know of any tools which can do this, but it's not hard to write), or break up your input into blocks and encrypt them separately (or use the DES ECB mode). > | ther server and modify it to nullify ANY authentication measures (easy if this > | is a shell script) - so you can't really be sure that no-one else is writing > | data onto the tape, only that the data you do write which ends up on the tape > | is secure from decryption. > > No, if you use pgp, you can sign the data on your local (trusted) > machine, and only be vulnerable to a DOS attack, not authentication > attacks. I was talking about authentication for access to the tape server process itself (preventing other people from writing onto your tape). You're correct about PGP - it's probably better to use PGP instead of bdes (or equivalent symmetric encryption filter) for this reason - verification that your data stream was read back intact (and assuming perfect retrieval, was stored intact) when you restore. Kris ----- "That suit's sharper than a page of Oscar Wilde witticisms that's been rolled up into a point, sprinkled with lemon juice and jabbed into someone's eye" "Wow, that's sharp!" - Ace Rimmer and the Cat, _Red Dwarf_ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message