[Cryptography] Layering Web Encryption?
Tom Mitchell
mitch at niftyegg.com
Wed Feb 25 19:34:50 EST 2015
On Wed, Feb 25, 2015 at 1:14 PM, Natanael <natanael.l at gmail.com> wrote
>
> Den 25 feb 2015 20:18 skrev "Chris Tonkinson" <chris at tonkinson.com>:
> [...]
> What if we were to take a leaf out
>
......
> Yes you could,
>
Yes you could. But clarity in what you intend to protect from is
important.
Most common personal stuff can be solved with a normal encrypted machine
and a set of dedicated accounts that have specific purposes and no
administrative
privileges on the machine: natanael, natanaelBANK1, natanaelGMAIL,
natanaelAMAZON
and to manage the box natanaelADNIN. As a minimum isolating
administrative access
is the first big step.
The next layer is dedicated hardware for each purpose. Some would
dedicated boot
media with no persistent storage in an older but still worthy machine.
VPNs allow you to operate with a previously shared set of secrets. VPN can
be inside
other VPNs... until the turtles get too slow.
Becoming anonymous is beyond my willingness to think out loud beyond the
point
that anonymous and communicating with others is very hard.
Time to flush some cookies...
--
T o m M i t c h e l l
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150225/f2260858/attachment.html>
More information about the cryptography
mailing list