From: Hendrik Brueckner <brueckner@linux.vnet.ibm.com>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] Managing wrapped key ciphers with cryptsetup
Date: Mon, 15 May 2017 15:56:54 +0200 [thread overview]
Message-ID: <20170515135654.GA11194@linux.vnet.ibm.com> (raw)
In-Reply-To: <20170428072222.GA25628@tansi.org>
On Fri, Apr 28, 2017 at 09:22:22AM +0200, Arno Wagner wrote:
> I think hardware-specific stuff has no place in cryptsetup.
> Get a kernel-driver and then create a wrapper that feeds
> the key to cryptsetup, anything else is a bad design.
That's actually what we did with the paes reference implementation.
There are kernel drivers that abstract the HSM-specifics. From a
user perspective, for example, cryptsetup, the secure (wrapped) key
is passed to the paes cipher (in-kernel crypto API). The paes cipher
uses information from the secure key to find a HSM that is capable
to perform crypto operations with that key. There is no need for the
user to perform any HSM action.
I am about to reply on Sven's mail, covering some more details that
I do not want to repeat here.
>
> And if you want a system that is secure against root, then
> do not use Linux. Seriously.
Of course, if users becomes root (or gain superuser capabilities),
they are able to access the data and obtain the wrapped key.
Secure keys (the wrapped keys with that we deal) cannot be un-wrapped.
That means, at least, root cannot obtain the inner clear key.
So with the wrapped key concept, you can harden your environment against
offline attacks. With the wrapped key support, you also get a
2-factor-authorization for free: there is something to know,
that's the passphrase, and there is something you own, that's the HSM.
Only if both factors are there, you can decrypt the data.
Thanks and kind regards,
Hendrik
--
Hendrik Brueckner
brueckner@linux.vnet.ibm.com | IBM Deutschland Research & Development GmbH
Linux on z Systems Development | Schoenaicher Str. 220, 71032 Boeblingen
next prev parent reply other threads:[~2017-05-15 13:57 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-04-27 15:09 [dm-crypt] Managing wrapped key ciphers with cryptsetup Hendrik Brueckner
2017-04-27 20:06 ` Sven Eschenberg
2017-04-28 7:22 ` Arno Wagner
2017-05-15 13:56 ` Hendrik Brueckner [this message]
2017-05-15 19:28 ` Arno Wagner
2017-05-18 17:41 ` David Niklas
2017-05-29 13:48 ` Hendrik Brueckner
2017-05-29 18:25 ` Arno Wagner
2017-05-31 14:01 ` Hendrik Brueckner
2017-05-16 7:47 ` Hendrik Brueckner
2017-07-09 14:58 ` Milan Broz
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20170515135654.GA11194@linux.vnet.ibm.com \
--to=brueckner@linux.vnet.ibm.com \
--cc=dm-crypt@saout.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.