summary Re: encrypted swap

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Linus Torvalds: "Re: kupdated oops in 2.4.8-pre5"
• Previous message: Peter Osterlund: "kupdated oops in 2.4.8-pre5"
• Next in thread: Ben Ford: "Re: summary Re: encrypted swap"
• Next in thread: David Wagner: "Re: summary Re: encrypted swap"
• Reply: David Wagner: "Re: summary Re: encrypted swap"
• Reply: Ben Ford: "Re: summary Re: encrypted swap"
• Reply: David Wagner: "Re: summary Re: encrypted swap"
• Reply: David Ford: "Re: summary Re: encrypted swap"
• Reply: Marty Poulin: "Re: summary Re: encrypted swap"
• Reply: David Wagner: "Re: summary Re: encrypted swap"
• Reply: David Ford: "Re: summary Re: encrypted swap"
• Reply: David Wagner: "Re: summary Re: encrypted swap"

1. notebook is stolen. presumably, if you have sensitive data, you would
know not to suspend and only power down completely after use. so the
notebook can be stolen while the power is on, or while the power is off.
if the power is off, all is good, the data is safe. if the power is on, i
don't think this was a random street thug who snatched your notebook.
(what were you doing working on sensitive data in a dark alley?)
presumably, you were there with it. in that case, it was probably a
"directed" hit by someone after the data, and not just the notebook.
there's a good chance that *you* will also be taken if they want the data
that bad. really, who leaves their notebook on and unattended? esp. if
it contains super sensitive data. and whether you know the swap passwork
or not, you will know the password for your email, and you're in for a
long night with some truth serum and a meat hook. ;)

2. a server, or maybe a workstation. if you are working with sensitive
data, but wouldn't notice the "plumber" sawing apart your computer to
extract ram chips, you're in bad shape. a quick hit and run operation
wouldn't have time for all the fancy hacks and cpu swaps to get at the
swap password. and again, there are *people* who know everything on that
disk. and they will probably be eaiser to brute force than the hard
drive.

conclusion: if your data is that valuable, you will need a small army to
protect it. don't bother encrypting swap, because guns are a better means
of protection. if your data is only semi-valuable, or private that you
wouldn't want random others to read it, then swap encryption is good.
it's a nice feature that some people might like to have. does it solve
every problem? no. but the people in the edge cases are most likely very
aware of the possibilities.

btw, i've used it, just for fun, and didn't notice too much performance
hit.

implementation paper:
http://www.openbsd.org/papers/swapencrypt.ps

ted

--
"I read a funny story about how the Republicans freed the slaves.
The Republicans are the ones who created slavery by law in the
1600's.  Abraham Lincoln freed the slaves and he was not a
Republican."
      - M. Barry, Mayor of Washington, DC

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

• Next message: Linus Torvalds: "Re: kupdated oops in 2.4.8-pre5"
• Previous message: Peter Osterlund: "kupdated oops in 2.4.8-pre5"
• Next in thread: Ben Ford: "Re: summary Re: encrypted swap"
• Next in thread: David Wagner: "Re: summary Re: encrypted swap"
• Reply: David Wagner: "Re: summary Re: encrypted swap"
• Reply: Ben Ford: "Re: summary Re: encrypted swap"
• Reply: David Wagner: "Re: summary Re: encrypted swap"
• Reply: David Ford: "Re: summary Re: encrypted swap"
• Reply: Marty Poulin: "Re: summary Re: encrypted swap"
• Reply: David Wagner: "Re: summary Re: encrypted swap"
• Reply: David Ford: "Re: summary Re: encrypted swap"
• Reply: David Wagner: "Re: summary Re: encrypted swap"