From: Matthias Schniedermeyer <ms@citd.de>
To: Jonas Meurer <jonas@freesources.org>
Cc: dm-crypt@saout.de
Subject: Re: [dm-crypt] Re2: nuke password to delete luks header
Date: Wed, 15 Jan 2014 12:39:44 +0100 [thread overview]
Message-ID: <20140115113944.GA7903@citd.de> (raw)
In-Reply-To: <5c4164f8d1df3395a7a5a3136e19f684@imap.steindlberger.de>
On 15.01.2014 11:00, Jonas Meurer wrote:
> Am 2014-01-15 07:01, schrieb Arno Wagner:
> >Huh? I think you do not understand my arguments at all.
> >
> >A) It puts people in danger
> >
> >[...]
> >
> >I do not think I need to repeat how dangerous, disconnected from
> >reality and stupid this approach is, do I? Your "analysis" shows
> >perfectly why having a "nuke" option is not a good idea. People
> >will start taking risks (carrying sensitive data, trying to nuke
> >in a dangersous situation) they would otherwise not take because
> >they will wrongly think this method protects them.
> >
> >Here is a real-world scenario: You do not nuke, but you pretend
> >to give a password, yet it is invalid. Guess what, before
> >a forensic examination, this behaves exactly the same as "nuke"!
> >After a forensic examination, they _will_ suspect you of having
> >nuked the password in the nukle case. Not good at all.
>
> I fail to see the point of your "dangerous" argument. A lot of
> things/tools/techniques are able to put people in danger. Still
> they're useful. With the same logic, you could argument against
> cryptography in general. People could actually forget the password
> and see themselves confronted with a bad evil person/institution/
> state who tries to force them to tell the password.
>
> There's quite some situation where being accused of having nuked
> the password is not a problem at all. In german law for example,
> you're not required to help investigative authorities with their
> investigations. Actually, it's not a criminal action to destroy
> your data. Indeed it is, if the data itself is criminal. But that
> has to be proved first, which might be much harder in case that
> it's not recoverable anymore.
>
> As I tried to explain above, I still see legitimate scenarios
> for using a nuke password function.
>
> In cases where using the feature makes things worse, people
> should not use it. But this decision has to be made by the
> individuals themselves. Not implementing a feature because
> people could use it in a stupid way is not an argument, is it?
>
> I agree with you, that controversal features need some extra
> protection and documentation. But this can be fixed easily:
> the process of setting a nuke password could include a big
> fat warning and point to further documentation.
>
> The argument against false sense of security again could be
> used for every security technique. People do need to understand
> the limitations of security and cryptography. That's what
> documentation is for (and by the way: your FAQ is a great
> example of doing documentation right. Thanks for your work on
> it!)
Assuming Law Enforcement:
Before the point in time you get into the vicinity of a LEO you can nuke
to your hearts content. After it's tampering with evidence, which is a
punishable crime of itself (As far as i know or assume. AND IANAL). That
the data couldn't be decrypted beforehand is insubstantial (IANAL too).
The important thing is: You can't "react" to getting into the vicinity
of a LEO other that powering down your device.
Problem is: If a volume is nuked, you can't prove if that was before or
after that point in time. The LEO can construct a crime right there and
then.
The documented existence of such an option is a risk by itself, because
the mere existence of "something" that looks like something nuked can be
a problem. Especially if a LEO asked you to enter a password, which you
did but it didn't work. If something that looks nuked is found after
that, the LEO just assumes you committed the crime of tampering with
evidence.
Altough if you nuke a LUKS header completely you can't prove that the
data is encrypted by LUKS.
So LEO can assume the data is encrypted with any product that you can't
exclude by analysing the remaining data.
For e.g. "Intact" you can determine that my encrpyted data is NOT LUKS
(At least not the normaly used "inline Header"-version). If i zero-out
the range a LUKS header normaly occupies, i can't prove anymore that the
data is not encrypted by (inline-)LUKS or any other product that doesn't
leave any distinguishing markers (after a possible header).
Or for the Truecypt example:
Try to prove that you don't have a hidden volume. It's a documented
feature of Truecypt, so a LEO just assumes that you use it, regardless
of you actually using one or not.
--
Matthias
next prev parent reply other threads:[~2014-01-15 11:39 UTC|newest]
Thread overview: 64+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-01-14 2:10 [dm-crypt] nuke password to delete luks header Jim O'Gorman
2014-01-14 2:41 ` .. ink ..
2014-01-14 2:52 ` Jim O'Gorman
2014-01-14 4:04 ` .. ink ..
2014-01-14 4:36 ` Arno Wagner
2014-01-14 5:00 ` .. ink ..
2014-01-14 7:11 ` Arno Wagner
2014-01-14 12:05 ` .. ink ..
2014-01-14 14:34 ` Arno Wagner
2014-01-14 19:22 ` .. ink ..
2014-01-15 19:36 ` Milan Broz
2014-01-16 11:50 ` Arno Wagner
2014-01-14 4:30 ` Arno Wagner
2014-01-14 5:01 ` Jim O'Gorman
2014-01-14 7:39 ` [dm-crypt] Re2: " Arno Wagner
2014-01-14 22:42 ` Jonas Meurer
2014-01-15 6:01 ` Arno Wagner
2014-01-15 10:00 ` Jonas Meurer
2014-01-15 10:47 ` Arno Wagner
2014-01-15 11:39 ` Matthias Schniedermeyer [this message]
2014-01-15 12:40 ` Arno Wagner
2014-01-15 12:59 ` Matthias Schniedermeyer
2014-01-15 13:38 ` .. ink ..
2014-01-15 20:27 ` [dm-crypt] " Milan Broz
2014-01-16 9:50 ` Ondrej Kozina
2014-01-16 10:30 ` Thomas Bastiani
2014-01-16 13:09 ` Florian Junghanns
2014-01-16 19:33 ` Milan Broz
2014-01-16 20:09 ` helices
2014-01-16 20:11 ` Iggy
2014-01-16 21:36 ` Matthias Schniedermeyer
2014-01-16 21:55 ` Arno Wagner
2014-01-16 22:49 ` Claudio Moretti
2014-01-17 8:17 ` Thomas Bastiani
2014-01-17 23:18 ` Claudio Moretti
2014-01-18 8:43 ` Arno Wagner
2014-01-18 12:42 ` Claudio Moretti
2014-01-18 19:18 ` Arno Wagner
2014-01-16 20:18 ` Matthias Schniedermeyer
2014-01-16 20:28 ` .. ink ..
2014-01-16 21:02 ` Brian
2014-01-16 21:24 ` Arno Wagner
2014-01-16 20:59 ` Milan Broz
2014-01-16 21:43 ` Arno Wagner
2014-01-17 12:43 ` Jonas Meurer
2014-01-17 13:12 ` Arno Wagner
2014-01-17 14:27 ` Jonas Meurer
2014-01-17 15:16 ` Matthias Schniedermeyer
2014-01-17 14:32 ` Rick Moritz
2014-01-17 14:32 ` Jonas Meurer
2014-01-17 14:57 ` Arno Wagner
2014-01-17 14:51 ` Heiko Rosemann
2014-01-17 15:10 ` Arno Wagner
2014-01-16 12:01 ` Arno Wagner
2014-01-16 11:59 ` Arno Wagner
2014-01-21 22:40 ` Jonas
2014-01-23 21:26 ` Milan Broz
2014-01-23 22:11 ` .. ink ..
2014-01-23 22:30 ` Milan Broz
2014-01-23 23:43 ` Arno Wagner
2014-01-27 9:04 ` Jonas Meurer
2014-01-27 12:44 ` Arno Wagner
2014-01-27 20:30 ` Milan Broz
2014-01-28 10:28 ` Jonas Meurer
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20140115113944.GA7903@citd.de \
--to=ms@citd.de \
--cc=dm-crypt@saout.de \
--cc=jonas@freesources.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.