| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20090704025755.GA1500@ucw.cz> Date: Sat, 4 Jul 2009 04:57:55 +0200 From: Pavel Machek <pavel@....cz> To: Jeremy Maitin-Shepard <jeremy@...emyms.com> Cc: Nigel Cunningham <ncunningham@...a.org.au>, tuxonice-devel@...ts.tuxonice.net, linux-kernel@...r.kernel.org, Rafael Wysocki <rjw@...k.pl> Subject: Re: [TuxOnIce-devel] RFC: Suspend-to-ram cold boot protection by encrypting page cache On Wed 2009-07-08 03:47:53, Jeremy Maitin-Shepard wrote: > Pavel Machek <pavel@....cz> writes: > > [snip] > > > I believe uswsusp could be used rather easily. Just modify s2disk to > > encrypt image in ram without writing it out, then decrypt it from ram > > and resume... it should be interesting hack. > > As far as I understand, that would be completely useless since the image > that would be encrypted would just be a copy of what would still remain > in memory. Yes... so next step would be kernel call that would erase all the pagecache and anonymous pages. You would still leave some data in kernel structures, but that would be quite hard to fix. -- (english) http://www.livejournal.com/~pavelmachek (cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists