"secure" file flag?
Poul-Henning Kamp
phk at phk.freebsd.dk
Mon Nov 24 01:48:19 PST 2003
In message <20031124091621.GB1168 at StefanEsser.FreeBSD.org>, Stefan =?iso-8859-1
?Q?E=DFer?= writes:
>Yes, probably. But encryption is only as good as key
>management and secure storage (and deletion) of keys.
>How do you implement unattended reboot, if you consider
>unauthorized (physical) access to your system as one
>of the attack scenarios to protect against ?
>(Not meaning, that secure erase would really solve
>that problem ...)
See my paper for a suggestion about using weak-link/strong-link
methods for that.
--
Poul-Henning Kamp | UNIX since Zilog Zeus 3.20
phk at FreeBSD.ORG | TCP/IP since RFC 956
FreeBSD committer | BSD since 4.3-tahoe
Never attribute to malice what can adequately be explained by incompetence.
More information about the freebsd-hackers
mailing list