[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: the cold-boot attack - a paper tiger?

To: Richard Zidlicky <rz@xxxxxxxxxxxxxx>, Rik van Riel <riel@xxxxxxxxxxx>
Subject: Re: the cold-boot attack - a paper tiger?
From: Phil <philtickle200@xxxxxxxxx>
Date: Sat, 31 May 2008 11:03:04 -0700 (PDT)
Cc: Jacob Appelbaum <jacob@xxxxxxxxxxxxx>, Matthias Schniedermeyer <ms@xxxxxxx>, Phil <philtickle200@xxxxxxxxx>, Peter_22@xxxxxx, linux-crypto@xxxxxxxxxxxx, jariruusu@xxxxxxxxxxxxxxxxxxxxx
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=bnye27mT89UG13th99Rv4vy6OPxtBl+SMk1NGeBRdD8dS/VJtMlCxeh0fL9WnHi8q4XMyBh7xFMH+LcvzXUXVelzt3MJoLXC/UFCtoZyr8q7Gyc3Sj30Rb/nJHZrHTpq03jUxj+/Ib9F0yqrQ9pGBuxgCAGomvSYZSCShzhgDK4=;
In-reply-to: <20080530155813.GC1005@linux-m68k.org>
List-archive: <http://mail.nl.linux.org/linux-crypto/>
List-help: <mailto:ecartis@nl.linux.org?Subject=help>
List-id: <linux-crypto.nl.linux.org>
List-owner: <mailto:ecartis-owner@nl.linux.org>
List-post: <mailto:linux-crypto@nl.linux.org>
List-software: Ecartis version 1.0.0
List-subscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=unsubscribe>
Sender: linux-crypto-bounce@xxxxxxxxxxxx

--- Richard Zidlicky <rz@xxxxxxxxxxxxxx> wrote:

> .. perfectly feasible
> with much of todays stock hardware. On multicore
> systems all you need is 
> a nonpreemptible kernel thread holding part of the
> key in its CPU registers. 
> That way you do not have the keys in main memory or
> they can be in main memory 
> but encrypted. The thread would also do the disk
> encryption so if designed
> carefully there would never be sufficient
> information in main memory
> to recover any data.
> 

Sounds like a solution. How hard would that be to
implement in loop-aes (is Jari reading?)



      

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/

References:
- Re: the cold-boot attack - a paper tiger?
  - From: Richard Zidlicky

Prev by Date: Re: the cold-boot attack - a paper tiger?
Next by Date: Re: the cold-boot attack - a paper tiger?
Previous by thread: Re: the cold-boot attack - a paper tiger?
Next by thread: Re: the cold-boot attack - a paper tiger?
Index(es):
- Date
- Thread