[Cryptography] Disk encryption
Peter Fairbrother
peter at tsto.co.uk
Wed Mar 29 08:00:52 EDT 2023
On 28/03/2023 19:30, Henry Baker wrote:
> *Always* encrypt SSD's, so that *erasure* really does work; just throw
> away the private encryption key and the SSD will then contain useless
> random bits.
Well, to an extent yes, but if (as is normal) only one key is used per
filesystem and someone gets that key, perhaps by a law enforcement key
demand in the UK, they can look for deleted files as usual.
It is not a universal remedy for secure deletion.
You can do per-file keying, but then you have to securely delete the keys...
Peter Fairbrother
More information about the cryptography
mailing list