Mailing List Archive
tlug.jp
Mailing List
tlug archive
tlug Mailing List Archive
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- Date: Thu, 22 Dec 2005 14:43:33 +0900
- From: Michael Reinsch <mr@example.com>
- Subject: Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- References: <5p75q7Lb.1135161316.4089660.jq@example.com> <43A97BB5.5030203@example.com> <20051221110033.2ed301cf.jep200404@example.com> <20051221161203.GD4394@example.com> <d8fcc0800512211728t3121a2f2y@example.com> <43AA09E3.3010502@example.com> <20051221220418.17053944.jep200404@example.com> <2cd59c36c01c402bb4fc060a392f25dc@example.com> <20051221224210.6b3da9a2.jep200404@example.com> <1135224016.7860.85.camel@example.com> <d8fcc0800512212104n79e97e3l@example.com>
- Organization: ...und überhaupt!?
Hi! On 22.12.2005, 14:04 +0900 Josh Glover wrote: > On 22/12/05, Michael Reinsch <mr@example.com> wrote: > > Simply use a cryptographic file system in the first place... > > Good idea, if time will de-classify your sensitive data. > > But the key to an encrypted filesystem *will* eventually be > brute-forced, so if you have data that needs to stay secret for more > than, say, 5 years (factoring in Moore's Law and as-yet-undreamed-of > advances in cryptoanalysis), you had better not rely solely on crypto. I think you can add several layers of security there. First one would be this famous hard disk password, we discussed already some time ago. But I assume here your BIOS can handle this correctly... While this probably does not impose a big problem for someone who really wants to get your data (if someone like that exists), it keeps most people away to have a look. If you want to dispose the hard disk, this might be also an option... So the second layer of security would be an encrypted file system. While it probably only protects your data for some time, you still have to put in a lot more effort to get to the data. Before disposing such a hard disk, overwriting the encrypted content with random bytes still seems a good idea. For data you really need to keep secret for a longer time, you probably want to use an additional stronger mechanism like PGP/GPG/SMIME. That would be the third layer. I'm not adding the crypto stuff for final disposal of the hard disk -- I think there are much simpler ways like opening the hard disk and using some nice, strong magnet -- but to avoid data leakage in other cases like someone stealing your hard disk or computer. This of course does not cover data leaks through other means, while the computer is running and working with this data... -- Michael Reinsch <mr@example.com> http://mr.uue.org/ ------------------------------------------------------------------------
Attachment:
signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil
- Follow-Ups:
- Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- From: Michael Reinsch
- Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- References:
- Re: [tlug] Free Linux for Desktop Newbies ?
- From: Jonathan Q
- Re: [tlug] Free Linux for Desktop Newbies ?
- From: Lyle (Hiroshi) Saxon
- Re: [tlug] eradicate the evil
- From: Jim
- Re: [tlug] eradicate the evil
- From: Michal Hajek
- Re: [tlug] eradicate the evil
- From: Josh Glover
- Re: [tlug] eradicate the evil
- From: Edward Middleton
- Re: [tlug] eradicate the evil with quality entropy
- From: Jim
- Re: [tlug] eradicate the evil with quality entropy
- From: Bruce Howard
- Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- From: Jim
- Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- From: Michael Reinsch
- Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- From: Josh Glover
- Re: [tlug] Free Linux for Desktop Newbies ?
- Prev by Date: Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- Next by Date: Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- Previous by thread: Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- Next by thread: Re: [tlug] Bits to Bits, Dust to Dust, Ashes to Ashes
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |