Re: eCryptfs Design Document - Christian Cachin

public inbox for linux-kernel@vger.kernel.org
 help / color / mirror / Atom feed

From: Christian Cachin <cca@zurich.ibm.com>
To: linux-kernel@vger.kernel.org
Subject: Re: eCryptfs Design Document
Date: Tue, 28 Mar 2006 15:49:47 +0200	[thread overview]
Message-ID: <20060328154947.2e2ae43b@localhost.localdomain> (raw)

Hi all,

I'm a cryptographer with an interest in encrypting stored data.

Mike had asked me to read the eCryptfs design and I can confirm the
security statements made there, and that the algorithm choices are
adequate.  The current release does not support integrity protection, but
this feature is promised for the next release through a MAC. 

I don't see the need for tweakable encryption modes (like LRW, CMC)
in the eCryptfs strategy because being a virtual file system, it can
afford to insert some extra space and is not bound to the block
boundaries like a block device, for which these were developed.  And with
integrity protection coming in the next release, the little extra security
gained in the current release by the tweakable modes would be a wasted
effort.

cc

--- 
Christian Cachin                           email: cca@zurich.ibm.com
IBM Zurich Research Laboratory                  tel: +41-44-724-8989
Saumerstrasse 4 / Postfach                      fax: +41-44-724-8953
CH-8803 Rueschlikon, Switzerland      http://www.zurich.ibm.com/~cca

next             reply	other threads:[~2006-03-28 13:49 UTC|newest]

Thread overview: 20+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2006-03-28 13:49 Christian Cachin [this message]
  -- strict thread matches above, loose matches on Subject: below --
2006-03-24 22:25 eCryptfs Design Document Michael Halcrow
2006-03-24 23:12 ` James Morris
2006-03-27 16:17   ` Michael Thompson
2006-03-27 16:52   ` Michael Halcrow
2006-03-24 23:49 ` Andrew Morton
2006-03-25  0:13   ` Michael Halcrow
2006-03-25  0:33     ` Andrew Morton
2006-03-25  7:38       ` Miklos Szeredi
2006-03-27 23:31       ` Michael Halcrow
2006-03-28 16:00         ` Stephen C. Tweedie
2006-03-29 20:14           ` Michael Halcrow
2006-03-25 19:28 ` Phillip Susi
2006-03-25 19:50   ` Michael Halcrow
2006-03-26 17:10     ` Phillip Susi
2006-03-26 18:04       ` Michael Halcrow
2006-03-27  0:05         ` Phillip Hellewell
2006-03-27  2:53           ` Phillip Susi
2006-03-27 16:10             ` Michael Thompson
2006-04-10  2:11 ` David Wagner

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20060328154947.2e2ae43b@localhost.localdomain \
    --to=cca@zurich.ibm.com \
    --cc=linux-kernel@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox