[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Self-destruct password

To: linux-crypto@nl.linux.org
Subject: Re: Self-destruct password
From: Robert Varga <nite@hq.alert.sk>
Date: Fri, 27 Apr 2001 17:20:47 +0200
In-Reply-To: <20010423074813.960002816@hal.haln>; from emil@la.mine.nu on Mon, Apr 23, 2001 at 07:48:13AM -0400
References: <20010423074813.960002816@hal.haln>
Sender: owner-linux-crypto@nl.linux.org
User-Agent: Mutt/1.2.5i

On Mon, Apr 23, 2001 at 07:48:13AM -0400, Emil wrote:
> Has anyone though of adding a second password to the encryption
> mechanism that will wipe clean the whole partition/file ?
> 
> In this way if someone forces you to give him the password to
> access your private data you can provide him the self-destruct
> password instead. He won't be able to tell which is the
> right password until he tries it and then it will be to late.

Great idea, yet can you make sure the attacker enters the key to your
vanilla utilities and not to his/hers modified ones ? 'Cause those need only
to check the phrase, not erase the data.

Your idea would work in a situation when the attacker knows little to
nothing about the way you protect your data (e.g. he sits in front of "Enter
password" prompt)

-- 
Kind regards,
Robert Varga
------------------------------------------------------------------------------
n@hq.sk                                          http://hq.sk/~nite/gpgkey.txt

PGP signature

References:
- Self-destruct password
  - From: Emil <emil@la.mine.nu>
- Self-destruct password
  - From: Emil <emil@la.mine.nu>

Prev by Date: Re: Announce: cryptoapi-2.4.3 [aka international crypto (non-)patch]
Next by Date: No Subject
Prev by thread: Re: Self-destruct password
Next by thread: RE: Self-destruct password
Index(es):
- Date
- Thread