[dm-crypt] Memory Overwrite Request in cryptsetup

Heinz Diehl htd at fancy-poultry.org
Sat Oct 27 12:48:03 CEST 2012


On 27.10.2012, dave wrote: 

> Any plans to comply with TCG Platform Reset Attack Mitigation?

Why should this be neccessary? Unless you are a target for one of the
big agencies (which 99.99% of us certainly isn't, and which would raise
completely different problems than keys stored in memory for a few
seconds), it doesn't make sense to me.

To carry out this kind of attack, you need physical access to the
computer, and there's only a very small timeframe. How real is it that
people are just around the corner waiting to attack your machine? If
they would wait, they could actually do it now, while the machine is
turned on.



More information about the dm-crypt mailing list