Re: [dm-crypt] Boot from fully encrypted disk which looks like unused

DM-Crypt Archive on lore.kernel.org
 help / color / mirror / Atom feed

From: dhvvcb@lavabit.com
To: Arno Wagner <arno@wagner.name>
Cc: dm-crypt@saout.de
Subject: Re: [dm-crypt] Boot from fully encrypted disk which looks like unused
Date: Mon, 23 May 2011 09:35:52 +0600	[thread overview]
Message-ID: <1306121752.2138.43.camel@localhost> (raw)
In-Reply-To: <20110523001308.GB1338@tansi.org>

On Mon, 23/05/2011 в 02:13 +0200, Arno Wagner wrote:
> In practice it is basically never necessary to hide encryption.
> Either it is perfectly legal for you to refuse handing over the
> keys

That is only true if you live in a civilized country. However even in GB
there is a law that requires you to hand over the key, otherwise you are
considered as a criminal. 

> or the presence of a large, random-looking partition or file
> is already enough that they can lock you up and demand the key.

That is not necessarily the case. Assume you live in a lawful country.
They should prove that a random-looking partition contains sensible
information. There is presumption of innocence. And you always may
declare that you clean the disk from private photo, for example. However
if a partition contains an indication that it is encrypted, such as luks
header, and even prompts to enter a password, they can justly demand
this password (if there is an appropriate law).

So I still think that a bit of overhead to hide encryption may
considerably increase security.

next prev parent reply	other threads:[~2011-05-23  3:28 UTC|newest]

Thread overview: 7+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2011-05-22 15:53 [dm-crypt] Boot from fully encrypted disk which looks like unused dhvvcb
2011-05-23  0:13 ` Arno Wagner
2011-05-23  3:35   ` dhvvcb [this message]
2011-05-23  7:09     ` Milan Broz
2011-05-23 17:20       ` PsiStormYamato
2011-05-24  4:33       ` dhvvcb
2011-05-23  7:45     ` Arno Wagner

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1306121752.2138.43.camel@localhost \
    --to=dhvvcb@lavabit.com \
    --cc=arno@wagner.name \
    --cc=dm-crypt@saout.de \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox