Date: Mon, 6 Aug 2018 09:52:01 +0800 From: thor <thor@irk.ru> To: freebsd-questions@freebsd.org Subject: Re: Erase memory on shutdown Message-ID: <5f673fdc-4dd8-663a-605a-6b7cdce5206d@irk.ru> In-Reply-To: <57043.108.68.162.197.1533514207.squirrel@cosmo.uchicago.edu> References: <20180805150241.1E186200349F8E@ary.qy> <4e70e969-14f7-c65d-96d2-dd1610499cd0@irk.ru> <63033.108.68.162.197.1533484522.squirrel@cosmo.uchicago.edu> <20180806073738.6f459398.freebsd.ed.lists@sumeritec.com> <57043.108.68.162.197.1533514207.squirrel@cosmo.uchicago.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
For any level of physical protection there is an adversary that could breach it. So the first stage of protection is physical one, the second is the breach detection that initiates clean shutdown. Problem is to erase everything on this shutdown. Or maybe I should start a reboot that hangs on "Enter passphrase for /dev/ada0p3.eli" and erases the memory in the process? On 08/06/18 08:10, Valeri Galtsev wrote: > > Please, correct me if I am wrong in the following: > > If the attacker yanks off the power cord, then cold boots off his media, > your defense/erasure of memory does not protect you against this attack. > Right? Your defense only helps if the attacker does clean shutdown. Right? >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5f673fdc-4dd8-663a-605a-6b7cdce5206d>