[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: data remanence

To: or-talk@xxxxxxxxxxxxx
Subject: Re: data remanence
From: Michael Holstein <michael.holstein@xxxxxxxxxxx>
Date: Mon, 15 May 2006 08:30:49 -0400
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Mon, 15 May 2006 08:32:23 -0400
In-reply-to: <20060515054035.GB30955@capsaicin.mamane.lu>
References: <20060513212933.5444.qmail@web37203.mail.mud.yahoo.com> <446655ED.5080703@gmx.net> <1147557684.6506.6.camel@localhost.localdomain> <4467CB52.20506@csuohio.edu> <20060515054035.GB30955@capsaicin.mamane.lu>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Mozilla Thunderbird 0.7.1 (X11/20040626)

Flash is writable, so can be tampered. The critical secret (the
server's key) is in the ro part. So what good is it?

There are a variety of hardware devices that attempt to address this .. IBM's secure crypto cards (PCI) come to mind -- these are used in a variety of ATMs for example, and store the key in volatile memory, protected against side-channel and physical attack.

Really, guys. If it is protection against governments you want, you
are barking up the wrong tree. Too difficult.

It's fun to try though, and since I'm not doing anything illegal with TOR, I'm only trying to help save other people's bacon.

While you'll never make anything *impossible*, you can make it so bloody difficult and expensive that you'll can tire your advisory.

Remember, the price of freedom is eternal vigilance (Jefferson).

/mike.

Follow-Ups:
- Re: data remanence
  - From: Lionel Elie Mamane

References:
- Re: Some legal trouble with TOR in France
  - From: Eric H. Jung
- Re: Some legal trouble with TOR in France
  - From: Landorin
- Re: Some legal trouble with TOR in France
  - From: Alexandru ARMEAN
- data remanence (was: Some legal trouble with TOR in France)
  - From: Michael Holstein
- Re: data remanence (was: Some legal trouble with TOR in France)
  - From: Lionel Elie Mamane

Prev by Author: data remanence (was: Some legal trouble with TOR in France)
Next by Author: TOR on Academic networks (problem)
Previous by thread: Re: data remanence (was: Some legal trouble with TOR in France)
Next by thread: Re: data remanence
Index(es):
- Author
- Thread