Re: The situation at hand and in the future

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Hubert Chan <hubert@uhoreg.ca>
To: reiserfs-list@namesys.com
Subject: Re: The situation at hand and in the future
Date: Sat, 29 May 2004 16:04:04 -0400	[thread overview]
Message-ID: <873c5j0zm3.fsf@uhoreg.ca> (raw)
In-Reply-To: 40B89C9C.5050307@slaphack.com

>>>>> "David" == David Masover <ninja@slaphack.com> writes:

[...]

David> Reading ahead in my mail, I see this has already been answered.
David> Note that cryptoloop does exactly what you're describing, only it
David> allows an incorrect passphrase to be entered, because it can't
David> tell the difference between correct or incorrect -- only you can,
David> because incorrect will yield gibberish.  We would want something
David> to persist that allows a passphrase to be checked.

Note that allowing a passphrase to be checked may decrease security
(slightly).  If an attacker has a way to check if the passphrase is
correct, it allows him/her to bruteforce the passphrase.  Otherwise,
when the attacker enters a passphrase and reads gibberish, he/she
doesn't know if that really is the data that's encrypted, or if he/she
entered the wrong passphrase.

Of course, in practice, it won't be too bad, because known file formats
are fairly easily recognizable.  But one could obtain "gibberish" to
encrypt by encrypting multiple times.  (So the attacker would need to
also know the number of encryption layers before he/she would be able
to bruteforce.)

[...]

David> | Ever since having read about Reiser4's implementation,
David> | cryptoloop has seemed like a terrible kludge, so I'm really
David> | looking forward to this better solution.

David> dm_crypt is a better solution than cryptoloop, but this is better
David> still.

dm_crypt is basically the same idea as cryptoloop, but implemented using
Device Mapper instead of loopback.  It's an implementation improvement,
which allows it to be more flexible, but is basically the same model of
use.

Of course, Reiser4 crypto won't make dm_crypt obsolete.  e.g. Reiser4
crypto won't be able to do swapfile encryption (which everyone who has
encrypted files should be doing).  For standard file encryption,
Reiser4 crypto is probably the way to go.  But dm_crypt/cryptoloop
still has its uses.

-- 
Hubert Chan <hubert@uhoreg.ca> - http://www.uhoreg.ca/
PGP/GnuPG key: 1024D/124B61FA
Fingerprint: 96C5 012F 5F74 A5F7 1FF7  5291 AF29 C719 124B 61FA
Key available at wwwkeys.pgp.net.   Encrypted e-mail preferred.

next prev parent reply	other threads:[~2004-05-29 20:04 UTC|newest]

Thread overview: 41+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2004-05-27 20:01 The situation at hand and in the future mjt
2004-05-27 21:05 ` Valdis.Kletnieks
2004-05-27 22:09   ` David Masover
2004-05-28  6:33     ` mjt
2004-05-28 19:53       ` Valdis.Kletnieks
2004-05-29 12:48         ` mjt
2004-05-29 14:22       ` David Masover
2004-05-29 15:49         ` mjt
2004-05-29 23:16           ` David Masover
2004-05-30  0:41             ` Hubert Chan
2004-05-30 12:29               ` mjt
2004-05-30 16:54                 ` Hubert Chan
2004-05-30 12:27             ` mjt
2004-05-30 17:09               ` Hubert Chan
2004-05-31  0:07                 ` The Amazing Dragon
2004-05-30 17:13               ` Hubert Chan
2004-05-30 18:06                 ` mjt
2004-05-31  0:45               ` David Masover
2004-05-31  8:38                 ` mjt
2004-05-31 15:12                   ` David Masover
2004-05-31 17:20                     ` Hubert Chan
2004-05-31 21:14                       ` David Masover
2004-05-31 15:16                   ` Hubert Chan
2004-06-01 13:25                 ` Edward Shushkin
2004-06-02  8:05                   ` mjt
2004-06-02 12:51                     ` Edward Shushkin
2004-06-02 15:15                       ` mjt
2004-05-31 18:31             ` Valdis.Kletnieks
2004-05-31 21:15               ` David Masover
2004-06-02  2:45           ` Hans Reiser
2004-05-29 20:04         ` Hubert Chan [this message]
2004-05-29 23:19           ` David Masover
2004-05-31 18:27             ` Valdis.Kletnieks
2004-05-31 21:23               ` David Masover
2004-06-01  2:09                 ` Hubert Chan
2004-06-05  4:50                   ` David Masover
2004-06-05  7:30                     ` Valdis.Kletnieks
2004-06-05 10:07                       ` Christian Iversen
2004-06-07 17:35                         ` Valdis.Kletnieks
2004-06-09 22:01                       ` David Masover
2004-06-10  8:23                         ` mjt

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=873c5j0zm3.fsf@uhoreg.ca \
    --to=hubert@uhoreg.ca \
    --cc=reiserfs-list@namesys.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.