All of lore.kernel.org
 help / color / mirror / Atom feed
From: test532@codingninjas.org
To: dm-crypt@saout.de
Cc: Heinz Diehl <htd@fancy-poultry.org>
Subject: Re: [dm-crypt] Random fill
Date: Mon, 31 Aug 2009 06:50:39 -0400	[thread overview]
Message-ID: <200908310650.39393.test532@codingninjas.org> (raw)
In-Reply-To: <20090831103850.GA7956@fancy-poultry.org>

Because the point of filling with random data is to eliminate the possibility 
of being able to tell where real data is stored.

If the random data is cracked by using a known plaintext attack, then the 
benefit of having this random data is nullified.

Kerckhoff's principle should be called Kerckhoff's Ideal, as it is ideal, but 
doesn't mean that AES matches that ideal. If AES was guaranteed to meet that 
ideal, then there would be no point in pre-filling in with random data. Since 
we cannot be guaranteed that AES matches Kerckhoff's ideal, it is safer to 
eliminate as many avenues of attack as we can, as some of those avenues may be 
vulnerable ones for AES for all we know.

Sam

> On 31.08.2009, test532@codingninjas.org wrote:
> > I agree with Rick that one should use /dev/urandom (instead of
> > encryption) due to the enabling of known plaintext attacks
> 
> Known plaintext attacks on what? On a bunch of zeroes?
> 
> After overwriting the whole partition using dmcrypt via /dev/zero, the
> random key used will be deleted irrevocably, and the partition gets a brand
>  new setup of LUKS/dmcrypt, and it gets partially filled with "real" data.
>  You haven't even to use the same algorithm, hash or whatever. How should
>  this lead to a significantly better situation to attack the
>  key/ciphertext?
> 
> _______________________________________________
> dm-crypt mailing list
> dm-crypt@saout.de
> http://www.saout.de/mailman/listinfo/dm-crypt
> 

  reply	other threads:[~2009-08-31 10:52 UTC|newest]

Thread overview: 13+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2009-08-29 19:58 [dm-crypt] Random fill Stroker
2009-08-30 12:07 ` Heinz Diehl
2009-08-30 14:07   ` Rick Moritz
2009-08-30 14:28     ` Heinz Diehl
2009-08-30 15:48       ` Rick Moritz
2009-08-30 20:54     ` test532
2009-08-31 10:38       ` Heinz Diehl
2009-08-31 10:50         ` test532 [this message]
2009-08-31 12:45           ` Heinz Diehl
2009-08-31 13:23             ` test532
2009-08-31 16:50               ` Heinz Diehl
2009-08-30 16:32 ` Arno Wagner
2009-09-01  9:24 ` Roscoe

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=200908310650.39393.test532@codingninjas.org \
    --to=test532@codingninjas.org \
    --cc=dm-crypt@saout.de \
    --cc=htd@fancy-poultry.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.