Security Basics mailing list archives

Re: Full disk encryption options

From: Lukasz Szmit <lukasz.szmit () ucd ie>
Date: Tue, 13 Jan 2009 17:49:17 +0000

The downside is that they keyfile sits on an unencrypted disk every
time the machine is shutdown correctly.

Not sure if this exactly answers your scenario but it is a start.


The problem with having it written to disk is that it is easily recovered.
 All an attacker would have to do is find where it was written and recover
it.  Is there a way to avoid that?  Too bad I can't keep a RAM drive
active when the system is off.  That would be the best solution.  That
way, if they unplugged it, it's gone...


The Gigabyte i-RAM might come in handy in this scenario.

-- 
Lukasz

Current thread:

Full disk encryption options aragonx (Jan 12)
- Re: Full disk encryption options Robin Wood (Jan 12)
  - Re: Full disk encryption options aragonx (Jan 12)
    - Re: Full disk encryption options Robin Wood (Jan 13)
    - Re: Full disk encryption options infolookup (Jan 13)
    - Re: Full disk encryption options Alex Craven (Jan 13)
    - Re: Full disk encryption options aragonx (Jan 13)
    - Re: Full disk encryption options Rob Thompson (Jan 14)
    - Re: Full disk encryption options yann . cloatre (Jan 19)
    - Re: Full disk encryption options Lukasz Szmit (Jan 13)
- Re: Full disk encryption options xgermx (Jan 12)
- Re: Full disk encryption options Rob Thompson (Jan 13)