Date: Mon, 24 Nov 2003 10:48:12 +0100 From: "Poul-Henning Kamp" <phk@phk.freebsd.dk> To: Stefan =?iso-8859-1?Q?E=DFer?= <se@freebsd.org> Cc: freebsd-hackers@freebsd.org Subject: Re: "secure" file flag? Message-ID: <17777.1069667292@critter.freebsd.dk> In-Reply-To: Your message of "Mon, 24 Nov 2003 10:16:21 %2B0100." <20031124091621.GB1168@StefanEsser.FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <20031124091621.GB1168@StefanEsser.FreeBSD.org>, Stefan =?iso-8859-1 ?Q?E=DFer?= writes: >Yes, probably. But encryption is only as good as key >management and secure storage (and deletion) of keys. >How do you implement unattended reboot, if you consider >unauthorized (physical) access to your system as one >of the attack scenarios to protect against ? >(Not meaning, that secure erase would really solve >that problem ...) See my paper for a suggestion about using weak-link/strong-link methods for that. -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD committer | BSD since 4.3-tahoe Never attribute to malice what can adequately be explained by incompetence.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?17777.1069667292>