Bugtraq mailing list archives
Re: password backdoors
From: mcrosbie () cs purdue edu (Mark Joseph Crosbie)
Date: Thu, 11 May 1995 19:26:16 -0500
In message <Pine.LNX.3.91.950511182807.22707G-100000 () netspace org>, "Lee J. Sil verman" writes:
I seem to remember that someone (who probably reads this list so I'll feel terrible if I screw this up, but I think his name is Matt Blaze and I *think* he works for AT&T) wrote a secure filesystem that uses NFS on the local machine to interact with an encrypted filesystem. I do not
Matt's paper onc CFS is available on the COAST archive at: ftp://coast.cs.purdue.edu/pub/doc/cryptography/Crypto-File-System.ps.Z
As you can tell, my information is sketchy. I'm sure someone with more information will post and tell us where we can learn more.
Here is the Abstract for the paper: Although cryptographic techniques are playing an increasingly important role in modern computing system security, user-level tools for encrypting file data are cumbersome and suffer from a number of inherent vulnerabilities. The Cryptographic File System (CFS) pushes encryption services into the file system itself. CFS supports secure storage at the system level through a standard Unix file system interface to encrypted files. Users associate a cryptographic key with the directories they wish to protect. Files in these directories (as well as their pathname components) are transparently encrypted and decrypted with the specified key without further user intervention; cleartext is never stored on a disk or sent to a remote file server. CFS can use any available file system for its underlying storage without modification, including remote file servers such as NFS. System management functions, such as file backup, work in a normal manner and without knowledge of the key . This paper describes the design and implementation of CFS under Unix. Encryption techniques for file system-level encryption are described, and general issues of cryptographic system interfaces to support routine secure computing are discussed. Regards, Mark. ---------------------------------------------------------------------- Mark Crosbie mcrosbie () cs purdue edu COAST Archive Maintainer security-archive () cs purdue edu COAST Group Tel: (317) 494-9313 Dept. of Computer Sciences Fax: (317) 494-0739 1398 Computer Sciences Building, Purdue University West Lafayette, IN 47907-1398, USA URL: http://www.cs.purdue.edu/people/mcrosbie (PGP key available here)
Current thread:
- Re: password backdoors Dave Mischler (May 10)
- <Possible follow-ups>
- Re: password backdoors Paul Szabo (May 10)
- Re: password backdoors Rick Weldon (May 11)
- Re: password backdoors Eric Kimminau (May 11)
- Re: password backdoors cmcurtin () clipper cb att com (May 10)
- Re: password backdoors Lee J. Silverman (May 11)
- Re: password backdoors Mark Joseph Crosbie (May 11)
- Re: password backdoors Aleph One (May 11)
- Re: password backdoors Lee J. Silverman (May 11)
- Re: password backdoors Randy Rasmussen (May 11)
- Re: password backdoors Larry Kealey (May 11)
- Re: password backdoors Virantha Mendis (May 12)
- Re: password backdoors H Morrow Long (May 11)
- Re: password backdoors Brian Harrington (May 11)
- Re: password backdoors vitor () uminho pt (May 15)
- please add me to your list Walter Mattison (May 16)
- Multinet PMDF Peter Jeremy (May 17)
- Mail List Rambo_Raymond (May 17)
(Thread continues...)