[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: encrypting swap

To: "Strohm Thomas (FV/SLD) *" <Thomas.Strohm@de.bosch.com>
Subject: RE: encrypting swap
From: Anders M Montonen <ammonton@cc.helsinki.fi>
Date: Thu, 17 Aug 2000 11:50:11 +0300 (EET DST)
cc: kernel-audit@nl.linux.org
In-Reply-To: <4BA83203985FD411A34A00508B69D83107F0EE@frmail3.fr.bosch.de>
Sender: owner-kernel-audit@nl.linux.org

On Thu, 17 Aug 2000, Strohm Thomas (FV/SLD) * wrote:

> 1) You switch the laptop completely off (no suspend to disk!). Then 
> there may remain sensitive data on the swap partition.
> Solution: Just overwrite the swap partition with zeroes on shutdown:
> 	swapoff, then dd in=/dev/null out=/dev/hda<whatever> ...

The problem with this method is that with suitable equipment, reading a
drive wiped in this way is pretty easy. A better way would be to write
random data over the drive, but to be sure you have to do it several times
(I believe there is an american directive regarding this that requires you
to write random data six times). This is time-consuming and even then 
might not be completely safe.
 On the other hand, encrypting the swap ensures that whatever data can be
read is useless. Yes, there is a performance hit, but if you need this
level of security it is the price you have to pay.

-anders

Kernel-audit:  discussion list for security and the linux kernel
Archive:       http://mail.nl.linux.org/kernel-audit/

References:
- RE: encrypting swap
  - From: "Strohm Thomas (FV/SLD) *" <Thomas.Strohm@de.bosch.com>

Prev by Date: RE: encrypting swap
Next by Date: RE: encrypting swap
Prev by thread: RE: encrypting swap
Next by thread: Re: encrypting swap
Index(es):
- Date
- Thread