[dm-crypt] Possibility for safe Luks partition delete functionality
arno at wagner.name
Wed Dec 11 23:53:03 CET 2013
On Wed, Dec 11, 2013 at 22:48:16 CET, Heinz Diehl wrote:
> On 11.12.2013, Arno Wagner wrote:
> > Wit things like rubber-hise cryptoanalysis, you can still get
> > at it. If the header is wiped, that becomes impossible.
> Of course. You will then have the possibility to maybe safe your life
> by giving the passphrase to the adversary, which would be impossible
> if the header has been wiped.
That depends on your priorities. Advising things as "wiping"
that do not wipe is not a good idea...
> In all other situations, simply cutting the power will be the fastest
> way to secure your data in case of an "emergency".
For varable values of "secure"...
> It all boils down to the fact that WDE is very suitable to protect
> your data in case a laptop gets stolen or a harddisk dies, but not
> against criminal minds putting a threat on your life.
It depends. The point is that it it not your decision what somebody
else needs. Hence it is really a bad idea for you to make assumptions
about the protection needs of others....
Arno Wagner, Dr. sc. techn., Dipl. Inform., Email: arno at wagner.name
GnuPG: ID: CB5D9718 FP: 12D6 C03B 1B30 33BB 13CF B774 E35C 5FA1 CB5D 9718
There are two ways of constructing a software design: One way is to make it
so simple that there are obviously no deficiencies, and the other way is to
make it so complicated that there are no obvious deficiencies. The first
method is far more difficult. --Tony Hoare
More information about the dm-crypt