[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] [tor-dev] resistance to rubberhose and UDP questions

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] [tor-dev] resistance to rubberhose and UDP questions
From: adrelanos <adrelanos@xxxxxxxxxx>
Date: Sat, 06 Oct 2012 19:42:29 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 06 Oct 2012 15:42:48 -0400
In-reply-to: <E1TKaBf-0001ft-4Y@xxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20121004162030.GM9750@xxxxxxxxx> <CABqy+spp1VZnTtzuYiwu1GXbskm3Z2KMfSK608+=_ZXgDY_odA@xxxxxxxxxxxxxx> <20121004184929.GR9750@xxxxxxxxx> <506ECD8B.9060809@xxxxxxxxxxxxx> <20121006091001.GA2358@xxxxxxxxxxxxxx> <CAD2Ti2-HvPOv3EPdiDknUtwsY15aqRJWGuyWkAKUe91fD-sHRw@xxxxxxxxxxxxxx> <E1TKaBf-0001ft-4Y@xxxxxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

tor@xxxxxxxxxxxxxxxxxx:
> On 06/10/12 19:24, grarpamp wrote:
> 
>>> *Anyone* with *any* access to the data centers that host the
>>> directory authorities is potentially subject to either a coercive
>>> or subversive
>>>
>>> As you know, I've been digging down the rabbit hole of how to
>>> ensure the integrity of a remote machine, and it seems impossible
>>> to do this without both secure boot *and* a way to verify the
>>> current runtime integrity.
> 
>> You can cold boot for OS fs crypto keys
> 
> FYI, if you use TRESOR/Trevisor, you can protect your OS encryption
> keys from cold boot attacks:
> 
> http://www1.informatik.uni-erlangen.de/tresor
> 
> The basic idea being that your keys are shifted from RAM into the
> debug registers of the CPU on boot, then all future crypto is done
> directly on the CPU (AES-NI) without the keys re-entering RAM.
> 
> Of course, you will probably still have other sensitive data in RAM.
> 
> (I use this patch on my Ubuntu laptop)

I like the basic idea very much.

Does this patch still work against latest kernel of your distro?

Does this force you to compile your own kernel each time your distro
released a kernel upgrade?

Do you know if they tried upstreaming their work to the kernel?

Cheers,
adrelanos
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] [tor-dev] resistance to rubberhose and UDP questions
  - From: tor

References:
- Re: [tor-talk] [tor-dev] resistance to rubberhose and UDP questions
  - From: grarpamp
- Re: [tor-talk] [tor-dev] resistance to rubberhose and UDP questions
  - From: tor

Prev by Author: Re: [tor-talk] Request: would someone create a tutorial on how to examine an app for leaks?
Next by Author: [tor-talk] TorBirdy GnuPG version curl-shim?
Previous by thread: Re: [tor-talk] [tor-dev] resistance to rubberhose and UDP questions
Next by thread: Re: [tor-talk] [tor-dev] resistance to rubberhose and UDP questions
Index(es):
- Author
- Thread