[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0

To: or-talk@xxxxxxxxxxxxx
Subject: Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
From: coderman <coderman@xxxxxxxxx>
Date: Thu, 21 Jun 2007 14:03:14 -0700
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Thu, 21 Jun 2007 17:03:24 -0400
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=fgxMUIotsKbfRk4kHdeub2Qk5v6xAaBnzfqmCHhtWjoq3WduIRUgYzkoRNUhcW3klHjsYAnLwILjlcVitcsOjtOazgjNmmt2eLiv79OMujfRKrX1MnntMil1Y1bqQMhZP2UUxIJz08x7U3lAAbqBBugLH3PDaQvZN8nJATPcZoU=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=eKWEFEd2yAA0MCB/PF5zYxi1yAyEEt321o+Ji8/k6hfnmWM2WHt6fmzTPGGmQ+ItORT0Pss3tlrSTko1vVlygUEOV5cZgovKCoLsvnoEbpqPs4xUXrLzMJGRf5eX7fnwsZ8IV2PGd73CsE2aoNk9RvnOw1nd6wbpL3vl8jPAs44=
In-reply-to: <20070621190610.GH521@xxxxxxxxxxxxxxxxxxxx>
References: <20070620150922.GQ713@xxxxxxxxxxxxxxxxxxxx> <1182427884.23799.1196329557@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <20070621170355.GC521@xxxxxxxxxxxxxxxxxxxx> <4ef5fec60706211121g76c02bc0j9621f949daf099e5@xxxxxxxxxxxxxx> <20070621183735.GD521@xxxxxxxxxxxxxxxxxxxx> <4ef5fec60706211155y70d51b42j6b118bdb82699ddb@xxxxxxxxxxxxxx> <20070621190610.GH521@xxxxxxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On 6/21/07, Benjamin Schieder <blindcoder@xxxxxxxxxxxxxxxxxxxx> wrote:

...
So far, I've seen three ways of doing filesystem encryption:
1) simply enter a passphrase, it gets hashed to a key one-way-or-another
   (hashalot, luks)


sure.

2) create the dm-crypt table, encrypt it with a gpg key. on reboot, request
   gpg key passphrase, pipe the table back to dm-setup


i like this better.  you get more entropy in your disk encryption
keys, and you can optionally store the disk keys on a separate device,
like USB fob.
[ i like the Sony MicroVaults:
http://www.sony.net/Products/Media/Microvault/usm-h.html ]

3) let the user select a cipher and then enter a passphrase (may be combined
   with 1, seen with loop-aes


you shouldn't need to do this for luks, since it stores cipher info in
the partition header.

for loop-aes i prefer to attempt to mount as AES256 and fall back to
AES128 if mount fails. (or vice versa, depending on defaults.)  since
loop-aes doesn't indicate anything about format or encryption type on
the volume, you have to manage this meta data elsewhere, and fail
gracefully.

4) Let the user do it manually


this is always useful, especially when trying to recover a corrupted
file system on an encrypted volume. :)

Since running `dmsetup table' still gives the required line to decrypt the
block device and LiveCDs generally do not have a secure `root' account,
running `dmsetup remove my_tor_home' after mount should be obvious.


what about saving changes later?  require re-auth and remount?

> key scrubbing and robust key schedule (less data is encrypted per key
> than the others) for loop-aes multi-v3 may provide a useful benefit
> depending on your needs...

The need is a Tor LiveCD.


intended usage and environment is a better description.  if the LiveCD
is used for a client only, no long term identity keys stored, than any
of the above should be fine.  (this sounds like what you envision near
term).

if the LiveCD is intended for running a long lived Tor server with
router keys on the encrypted drive then loop-aes with key scrubbing,
disk keys on an external USB device, and key management in a minimal
un-networked pre-boot environment [0] would be my preference.  a
million other factors to consider, particularly application
vulnerabilities and physical security, but at least that would put
storage privacy toward the bottom of the risk list.

hope that helps,


0. pre-boot auth:
i like to use a small initrd to do this with a kernel configured
without networking and other unnecessary device support.  pivot_root,
kexec, and exec init work well in this context...

Follow-Ups:
- Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
  - From: Benjamin Schieder

References:
- [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
  - From: Benjamin Schieder
- Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
  - From: JT
- Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
  - From: Benjamin Schieder
- Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
  - From: coderman
- Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
  - From: Benjamin Schieder
- Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
  - From: coderman
- Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
  - From: Benjamin Schieder

Prev by Author: Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
Next by Author: Re: Tor Traffic Problems
Previous by thread: Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
Next by thread: Re: [ANNOUNCE] ROCKate Tor LiveCD V0.4.0.0
Index(es):
- Author
- Thread