[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: rootkit and 10 minutes ?

To: Jean-Luc Cooke <jlcooke@certainkey.com>
Subject: Re: rootkit and 10 minutes ?
From: "Michael T. Babcock" <mbabcock@fibrespeed.net>
Date: Tue, 29 Oct 2002 16:44:16 -0500
CC: Earl <LARGE.FILES@GMX.NET>, linux-crypto@nl.linux.org
List-archive: <http://mail.nl.linux.org/linux-crypto/>
List-help: <mailto:listar@nl.linux.org?Subject=help>
List-owner: <mailto:riel@nl.linux.org>
List-post: <mailto:linux-crypto@nl.linux.org>
List-software: Listar version 1.0.0
List-subscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=unsubscribe>
Organization: FibreSpeed Ltd.
Original-Recipient: rfc822;linux-crypto-archive@nl.linux.org
References: <53458519.20021002131624@GMX.NET> <3D9B0010.8040705@wanadoo.fr> <15920683401.20021002185329@web.de> <20021007115807.C25582@certainkey.com> <3DBEF335.8070508@fibrespeed.net> <20021029163333.A12397@certainkey.com>
Sender: linux-crypto-bounce@nl.linux.org
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.1) Gecko/20020826

Jean-Luc Cooke wrote:

>If someone can use the fs structure (aka. known plaintext attack) then the
>cipher is broken outright.  So your argument seems lost.
>  
>

What you seemed to be presenting is this:

keysystem <-> kernel fs driver <-> userspace fs display

What I proposed is this:

keysystem <-> userspace crypto (loopback) <-> kernel fs driver <-> 
userspace fs display

The difference is simply that in my version, the data is en/decrypted 
outside the kernel.  In both versions, I have to assume that an attacker 
can, for a much lower budget than crypanalysis, remove the hard drive 
and start playing with it in another machine with a different kernel.  I 
also have to assume that they could have written any number of known 
plaintexts to the drive before doing so.  My version may seem to 
facilitate such work, but in fact the time / effort requirement 
presented by your version still seems trivial compared to a full-scale 
cryptanalytic attack.

I would be much more impressed by a userspace DRM-style crypto system 
that did the crypto work in a library directly accessed by the userspace 
programs trying to deal with the disk files.  Doing an 
"open('blah.txt')" should call a library function that checks for 
'blah.txt' in the current virtual directory of 
/var/hahayoucantreadthis.dat, tries to decrypt it using the current key 
(also read directly by the library into secure memory space) and 
displays / works with it.  Encryption work would similarly happen before 
any other process got its grubby little hands on my bits & bytes.

Just FYI ...

-- 
Michael T. Babcock
C.T.O., FibreSpeed Ltd.
http://www.fibrespeed.net/~mbabcock

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/

Follow-Ups:
- Re: rootkit and 10 minutes ?
  - From: Jean-Luc Cooke <jlcooke@certainkey.com>

References:
- 2_linux newbie versus Mandrake
  - From: Earl <LARGE.FILES@GMX.NET>
- Re: 2_linux newbie versus Mandrake
  - From: pplf <pplf@wanadoo.fr>
- rootkit and 10 minutes ?
  - From: Earl <LARGE.FILES@GMX.NET>
- Re: rootkit and 10 minutes ?
  - From: Jean-Luc Cooke <jlcooke@certainkey.com>
- Re: rootkit and 10 minutes ?
  - From: "Michael T. Babcock" <mbabcock@fibrespeed.net>
- Re: rootkit and 10 minutes ?
  - From: Jean-Luc Cooke <jlcooke@certainkey.com>

Prev by Date: Re: rootkit and 10 minutes ?
Next by Date: Re: rootkit and 10 minutes ?
Prev by thread: Re: rootkit and 10 minutes ?
Next by thread: Re: rootkit and 10 minutes ?
Index(es):
- Date
- Thread