Re: cgd and remote keys

To: Erik Berls <cyber%netbsd.org@localhost>
Subject: Re: cgd and remote keys
From: Gavan Fantom <gavan%coolfactor.org@localhost>
Date: Sat, 05 Jan 2008 20:55:30 +0000

Erik Berls wrote:

You really have to work to balance the multiple encrypted volumes.  I
don't think for a minute that the courts are going to believe that
your 4G volume only contains 1 8k text file.  Especially in front of a
jury.  [;-)

I think the idea is that you put a believable amount of plausibly secretstuff on that volume. Your 1 8k text file listing all the stuff youintend to put there at some point in the future won't cut it. 2G of(just about legal) porn downloaded with bittorrent might be more plausible.

However I think we're getting a bit off focus.  The goal is the
against theft of the key, not resistance to compulsion to divulge the
(a) key.

In the context of cgd as currently implemented, I agree. Plausibledeniability would be great, but is currently a much bigger (andseparate) problem.

References:
- Re: cgd and remote keys
  - From: Cem Kayali
- Re: cgd and remote keys
  - From: Martin J. Laubach
- Re: cgd and remote keys
  - From: Gavan Fantom
- Re: cgd and remote keys
  - From: Erik Berls

Prev by Date: Re: cgd and remote keys
Next by Date: enforcing RLIMIT_NPROC in setuid() ?
Previous by Thread: Re: cgd and remote keys
Next by Thread: Re: cgd and remote keys
Indexes:

Home | Main Index | Thread Index | Old Index