Re: GELI - disk encryption for FreeBSD - review request.

From: Andrew Swallow (am.swallow_at_btopenworld.com)
Date: 07/29/05

• Next message: Andrew Swallow: "Re: GELI - disk encryption for FreeBSD - review request."
• Previous message: Jean-Luc Cooke: "Re: GELI - disk encryption for FreeBSD - review request."
• In reply to: Joseph Ashwood: "Re: GELI - disk encryption for FreeBSD - review request."
• Next in thread: Joseph Ashwood: "Re: GELI - disk encryption for FreeBSD - review request."
• Reply: Joseph Ashwood: "Re: GELI - disk encryption for FreeBSD - review request."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Fri, 29 Jul 2005 18:54:25 +0000 (UTC)

Joseph Ashwood wrote:

> "Andrew Swallow" <am.swallow@btopenworld.com> wrote in message
> news:dcc4na$7p1$1@nwrdmz03.dmz.ncs.ea.ibs-infra.bt.com...
>
>>Joseph Ashwood wrote:
>
> [use entropy collection]
>
>>Entropy collection quickly runs into practical problems.
>>For a disk being written to 50 times a second
>>50 * 24 = 1200 bits of entropy per second.
>>
>>Servers frequently do not even have a mouse to wave around.
>>There may be sufficient entropy to change the second key
>>variable every time you power up.
>
>
> That could pose a problem. I'm not entirely certain of the real
> requirements, I haven't given those much investigation, for examination I
> had simply assumed an infinite number of purely entropic bits were easily
> available. I'm sure there's some compromise between pure entropy and CTR
> mode that will be secure.
> Joe

My view is that if you are designing a disk control
board/chip with built in encryption include the small
number of analogue components to make a random number
generator.

Andrew Swallow

---

• Next message: Andrew Swallow: "Re: GELI - disk encryption for FreeBSD - review request."
• Previous message: Jean-Luc Cooke: "Re: GELI - disk encryption for FreeBSD - review request."
• In reply to: Joseph Ashwood: "Re: GELI - disk encryption for FreeBSD - review request."
• Next in thread: Joseph Ashwood: "Re: GELI - disk encryption for FreeBSD - review request."
• Reply: Joseph Ashwood: "Re: GELI - disk encryption for FreeBSD - review request."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Gathering entropy for PRNGs on MVS ... Reschedule so the operating system ... use the current O/S activity rate as a basis for entropy. ... Disk reads and writes, when the program waits until the ... PC random number generator module and fitting it ... (sci.crypt) Re: FUD about CGD and GBDE ... >analysis tools to measure the entropy of disk drives. ... In addition to various UNIX disks I also analyzed disk images from ... The highest entropy I found was a disk-images from a public FTP ... (freebsd-hackers) Re: /dev/urandom uses uninit bytes, leaks user data ... the entropy saved at shutdown can be known at boot-time. ... examine the saved entropy on disk.) ... paranoid, you can scrub the disk after it is read and mixed into the ... hardware platforms, such as IBM blades and Thinkpads, come with TPM ... (Linux-Kernel) Re: /dev/urandom uses uninit bytes, leaks user data ... trojan horse kernel that logs all keystrokes and all generated entropy ... if the attacker has access to your disk between shutdown and boot up, ... If any one of them is unknown to the attacker, ... (Linux-Kernel) Re: GELI - disk encryption for FreeBSD - review request. ... > Entropy collection quickly runs into practical problems. ... > There may be sufficient entropy to change the second key ... (sci.crypt)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > sci.crypt  > 2005-07