Security of data in memory
From: Nicholas Brawn (ncb@pobox.com)Date: 12/25/01
- Previous message: dwheeler@ida.org: "Flawfinder updated (version 0.21)"
- Next in thread: John Viega: "Re: Security of data in memory"
- Reply: John Viega: "Re: Security of data in memory"
- Reply: Kurt Seifried: "Re: Security of data in memory"
- Reply: Wichert Akkerman: "Re: Security of data in memory"
- Reply: Glynn Clements: "Re: Security of data in memory"
- Reply: Gushterul: "Re: Security of data in memory"
- Reply: lists@notatla.demon.co.uk: "Re: Security of data in memory"
- Reply: Chris Holloway: "Re: Security of data in memory"
- Reply: Rodrigo Barbosa: "Re: Security of data in memory"
- Reply: Peter Jeremy: "Re: Security of data in memory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 26 Dec 2001 00:31:16 +1100 From: Nicholas Brawn <ncb@pobox.com> To: secprog@securityfocus.com
I have a unix program that reads in an encrypted file, decrypts it and
works on it whilst in memory. What security considerations should I be
aware of? I'm thinking of things like clearing the decrypted buffer
prior to exiting, not storing any of the data in a temporary file, etc.
Cheers,
Nick
-- Real friends help you move bodies.
- Previous message: dwheeler@ida.org: "Flawfinder updated (version 0.21)"
- Next in thread: John Viega: "Re: Security of data in memory"
- Reply: John Viega: "Re: Security of data in memory"
- Reply: Kurt Seifried: "Re: Security of data in memory"
- Reply: Wichert Akkerman: "Re: Security of data in memory"
- Reply: Glynn Clements: "Re: Security of data in memory"
- Reply: Gushterul: "Re: Security of data in memory"
- Reply: lists@notatla.demon.co.uk: "Re: Security of data in memory"
- Reply: Chris Holloway: "Re: Security of data in memory"
- Reply: Rodrigo Barbosa: "Re: Security of data in memory"
- Reply: Peter Jeremy: "Re: Security of data in memory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
