[Cryptography] It's all K&R's fault
Bill Frantz
frantz at pwpconsult.com
Sun Apr 20 23:18:18 EDT 2014
On 4/20/14 at 6:37 PM, watsonbladd at gmail.com (Watson Ladd) wrote:
>And if I encrypt swap, there isn't any
>reason that keys landing there is a bad thing.
And encrypted swap is really the sweet spot for encryption
because all the key management problems just go away:
Randomness: You don't need to generate the key until the
first swap out. Lots of time since boot and lots of interrupts
to feed the pool.
Key life: Keep the key in memory. It only has to last until shutdown.
Key distribution: You don't need to send it anywhere.
Key authentication: Yea, right! You don't need to.
Cheers - Bill
---------------------------------------------------------------------------
Bill Frantz |"Web security is like medicine - trying to
do good for
408-356-8506 |an evolved body of kludges" - Mark Miller
www.pwpconsult.com |
More information about the cryptography
mailing list