<p dir="ltr">Den 19 jun 2014 21:37 skrev "Jerry Leichter" <<a href="mailto:leichter@lrw.com">leichter@lrw.com</a>>:<br>
><br>
> On Jun 19, 2014, at 9:43 AM, John Denker <<a href="mailto:jsd@av8n.com">jsd@av8n.com</a>> wrote:<br>
> >> Does anyone know if this assumption is reasonable?<br>
> ><br>
> > Almost any crypto-related assumption about flash-based file<br>
> > systems is not reasonable. Ditto for many other modern<br>
> > hardware systems. They do too much behind your back,<br>
> > including moving data from place to place.</p>
<p dir="ltr">[...] </p>
<p dir="ltr">> As always, the killer is the stand-alone system that has to reboot without someone there to type in the disk decryption password. TPM's are a great solution to this problem - or would be if they hadn't gotten twisted to support DRM.<br>
><br>
> (I know of a company that has a bunch of standalone servers that need access to encryption keys and are scattered throughout the company campus. They decided that these things are almost never shut down, so it's not worth deploying a secure way to store the keying information. Instead, a rebooting machine has enough smarts to ping the support center for help; a person comes out and supplies the keying information. Makes for a big fire-drill after a large power-failure - which has happened - but that's considered a worthwhile tradeoff.)<br>
> -- Jerry</p>
<p dir="ltr">Maybe Mandos would be helpful to them. If you trust the servers to run correctly when they are unattended, you probably won't need more than to be notified when they reboot as they usually aren't particularly more sensitive when booting. If you're worried about evil maid attacks, then the attacker could do similar things when it is already running anyway. </p>
<p dir="ltr">Quoting the wiki: "Mandos is a system for allowing servers with encrypted root file systems to reboot unattended and/or remotely". </p>
<p dir="ltr"><a href="https://wiki.recompile.se/wiki/Mandos">https://wiki.recompile.se/wiki/Mandos</a></p>