[dm-crypt] Quorum system on decryption passphrase

Fernando D. Pedemonte fernando.pedemonte at infodat.com.ar
Wed Mar 30 21:32:41 CEST 2016


Thanks for your quick responses, I was thinking in a solution like this one. But I wanted to check with the experts before doing it hehe. 
Since i only need 2 of 3 quorum, I will adopt this hack 

Best Regards 
FP- 


From: "Selim James Levy" <sjtlevy at gmail.com> 
To: "Fernando D. Pedemonte" <fernando.pedemonte at infodat.com.ar> 
Cc: "dm-crypt" <dm-crypt at saout.de> 
Sent: Wednesday, March 30, 2016 2:14:53 PM 
Subject: Re: [dm-crypt] Quorum system on decryption passphrase 

Hi Fernando, 
There could be an ugly-ish hack to accomplish what you need. It isn't scalable to a (much) larger number of people, however. 

Let the 3 people's names be be A, B, and C (in that alphabetical order) and their respective passphrases be A*, B*, and C*. 

You could tell the three people that if 2 of the three wanted access, they would type in their passphrases *one after the other* in the person's (name) alphabetical order. You would then only need 3 passphrases: A*B*, A*C*, and B*C*. 

As I said: this is an ugly hack. 

Best Regards, 
Selim 

On 30 March 2016 at 09:18, Fernando D. Pedemonte < fernando.pedemonte at infodat.com.ar > wrote: 



Dear List 

I am trying to setup an encrypted partition, and I requiere 2 people of 3 putting a pass-phrase to unlock the device. 
Is there any way that I can setup in the system to require keys in two different slots to unlock the device? 

Thanks in advance for your response 
Best Regards 
FP- 

_______________________________________________ 
dm-crypt mailing list 
dm-crypt at saout.de 
http://www.saout.de/mailman/listinfo/dm-crypt 





-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.saout.de/pipermail/dm-crypt/attachments/20160330/38606824/attachment-0001.html>


More information about the dm-crypt mailing list