From: Gregory Maxwell <gmaxwell@gmail.com>
To: Edward Shishkin <edward@namesys.com>
Cc: Hans Reiser <reiser@namesys.com>,
Reiserfs developers mail-list <Reiserfs-Dev@namesys.com>,
Reiserfs List <reiserfs-list@namesys.com>
Subject: Re: Basic interface for key management in reiser4 (DRAFT)
Date: Fri, 19 Aug 2005 10:48:40 -0400 [thread overview]
Message-ID: <e692861c0508190748132ceb1d@mail.gmail.com> (raw)
In-Reply-To: <4305C5E5.7000308@namesys.com>
On 8/19/05, Edward Shishkin <edward@namesys.com> wrote:
> Actually it is critical:
> http://marc.theaimsgroup.com/?l=linux-kernel&m=107719798631935&w=2
> But why random? It is slowly.. I would prefer object-id-based one..
The IV doesn't need to be random, but it should be different for every
instance of a file, different every time a file is deleted and
recreated, not increment in any predictable way between files, and be
impossible to control by a user. It should have a low possibility of
reuse.
Earlier linux DM crypt had a weakness where the IV incremented with
every block in the file system, this lead to some interesting
watermarking attacks. It was possible to form a stream of data with
changes that negated the XORs from the trivially incremented IV, and
thus the first block of each sector could be used to form an
electronic code book. This has since been corrected with a couple of
options (one is to use the cryptographic hash of the block number).
If the user has some way of trivially influencing differences in the
object ID, for example sequential files have sequential object id,
then the object ID should be passed through a hash function so that a
user must know the full object iD in order to predict even a single
bitflip.
next prev parent reply other threads:[~2005-08-19 14:48 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-08-17 14:50 Basic interface for key management in reiser4 (DRAFT) Edward Shishkin
2005-08-17 19:52 ` Hans Reiser
2005-08-18 18:33 ` Edward Shishkin
2005-08-19 0:30 ` Hans Reiser
2005-08-19 4:18 ` Gregory Maxwell
2005-08-19 5:17 ` Hans Reiser
2005-08-19 7:16 ` Gregory Maxwell
2005-08-19 14:56 ` Edward Shishkin
2005-08-19 11:43 ` Edward Shishkin
2005-08-19 14:48 ` Gregory Maxwell [this message]
2005-08-19 10:45 ` Edward Shishkin
2005-08-23 15:48 ` Edward Shishkin
2005-08-24 0:52 ` Hans Reiser
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=e692861c0508190748132ceb1d@mail.gmail.com \
--to=gmaxwell@gmail.com \
--cc=Reiserfs-Dev@namesys.com \
--cc=edward@namesys.com \
--cc=reiser@namesys.com \
--cc=reiserfs-list@namesys.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.