From: Yaron Sheffer <yaronf@gmx.com>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] dm-crypt Digest, Vol 27, Issue 2
Date: Thu, 01 Sep 2011 16:30:23 +0300 [thread overview]
Message-ID: <4E5F88EF.4030503@gmx.com> (raw)
In-Reply-To: <mailman.6.1314877132.9282.dm-crypt@saout.de>
Hi Arno,
Encryption of data-at-rest in the public cloud is not "pointless", it is
yet another layer of security. Just as people encrypt their laptops even
though they are password protected.
The cloud provider does not have access to "everything", certainly not
when we're talking about data at rest, where the keys may have come and
gone months ago but the data is still there. Moreover, the cloud
provider is not the only or the most important threat. By the way, I am
not claiming that the permission system is broken.
Attacks on encrypted data are no harder or more expensive in the cloud
than on physical disks. If you parallelize things, your throughput is
limited by the disks physical access, just as for "real" disks.
This is a solution for a very real problem. But I don't want to go
commercial again...
Thanks,
Yaron
On 09/01/2011 02:38 PM, dm-crypt-request@saout.de wrote:
Message: 2
Date: Thu, 1 Sep 2011 13:27:24 +0200
From: Arno Wagner<arno@wagner.name>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] Blog post on FDE and integrity protection
Message-ID:<20110901112724.GB4617@tansi.org>
Content-Type: text/plain; charset=us-ascii
Disk encryption in a non-private cloud is pretty pointless.
The cloud provider can access everything. An attacker should
reliably be kept from accessing your storage, otherwise you are
screwed anyways. I know, people are doing this, but they are
kidding themselves.
For your EBS scenario, true, block-level encryption
can be done, but it is irrelevant. Encryption is not the
right way to fix a broken cloud permission system. Critical
encrypted data should never be decrypted in the cloud. It
is just not secure. On the other hand, attacks that
manipulate encrypted images are not relevant for lower
security requirements, as they are very hard (expensive)
to do.
This makes integtity protection of encrypted data in the cloud
a complete non-issue. This is a solution without a problem.
Arno
On Thu, Sep 01, 2011 at 01:51:38PM +0300, Yaron Sheffer wrote:
>> Hi Arno,
>>
>> Thank you for reviewing my post. Please see my comments below.
>>
>> Thanks,
>> Yaron
>>
>>> Message: 3
>>> Date: Wed, 31 Aug 2011 23:29:40 +0200
>>> From: Arno Wagner<arno@wagner.name>
>>> To: dm-crypt@saout.de
>>> Subject: Re: [dm-crypt] Blog post on FDE and integrity protection
>>> Message-ID:<20110831212940.GB25013@tansi.org>
>>> Content-Type: text/plain; charset=us-ascii
>>>
>>>
>>> Commercial, for sure. It combines fragments from well-known
>>> facts and marketing speech. And it has not understood the
>>> problem, advertizing for SAN/cloud services, where storage is
>>> not block-based but file-based.
>> The most commonly used public cloud is Amazon WS. This cloud offers
>> two storage possibilities, S3 which is object ("file") storage, and
>> EBS which is block storage, and is exposed to the application as a
>> disk volume. The post is about EBS, sorry if that wasn't clear.
>>> I should also note to anyone contemplating "solution" 3
>>> that RAID1 does not read both devices on read access,
>>> and inconsistencies will only show up if you or your
>>> distro does RAID consistency checks.
>> This is correct, thanks.
>>> And of course the whole article does not apply to the
>>> SAN/cloud setting in the first place, as the attack
>>> scenario is for an unmapped encrypted filesystem and
>>> an attacker getting write access to that, i.e. the
>>> encrypted raw (block) view needs to be exported to
>>> the attacker. I do not see how that would be done in the
>>> SAN/Cloud setting. These do their own filesystem
>>> and block encryption must be done below the FS layer,
>>> there is no way around that.
>> The attack scenario is for someone who has access (possibly limited
>> access) to your cloud account to detach your EBS volume from its
>> current virtual server, attach it to a different server, and then
>> modify the (encrypted) storage. This is all completely doable and
>> actually standard procedure on AWS.
>>> Arno
>>>
>>>
>>>
>>> On Wed, Aug 31, 2011 at 04:25:51PM +0200, Heinz Diehl wrote:
>>>> On 31.08.2011, Yaron Sheffer wrote:
>>>>
next parent reply other threads:[~2011-09-01 13:30 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <mailman.6.1314877132.9282.dm-crypt@saout.de>
2011-09-01 13:30 ` Yaron Sheffer [this message]
2011-09-01 17:24 ` [dm-crypt] dm-crypt Digest, Vol 27, Issue 2 Arno Wagner
2011-09-01 15:58 Shardis
2011-09-01 17:18 ` Heinz Diehl
2011-09-01 17:36 ` Arno Wagner
-- strict thread matches above, loose matches on Subject: below --
2011-09-01 18:22 Shardis
2011-09-01 18:36 ` Arno Wagner
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4E5F88EF.4030503@gmx.com \
--to=yaronf@gmx.com \
--cc=dm-crypt@saout.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.