Harddisk encryption

Raw Matter

Quicksearch

Syndicate This Blog

Categories


All categories

Comments

Janese about cmot died on April 17th 2011
Fri, 20.05.2011 12:46
Hey, you’re the goto expret. T hanks for hanging out here.
Storm about cmot died on April 17th 2011
Fri, 20.05.2011 04:58
That's a mold-bareker. Great t hinking!
Fritz Keller about cmot died on April 17th 2011
Sun, 08.05.2011 23:53
Dear Diana. What sad news I go t today with your email to me. I personally knew Adrian as a really nice person, he [...]
Stephan about cmot died on April 17th 2011
Tue, 03.05.2011 23:35
Dear Diana We actually have n ever met but please neverthele ss receive my condolences. I h ave known Adrian for man [...]
Fabian about cmot died on April 17th 2011
Mon, 02.05.2011 10:46
Oh no! It is so sad to read th is. I always liked Adrian's bl og and found it one of the mos t valuable on Planet Debian...

Thursday, February 5. 2009

Harddisk encryption

Bruce Schneier is very sceptical about the new hard drive encryption standards released by a group composed of virtually all major storage vendors. He points out that the established software solutions have worked just fine, while this new standards adds complexity (and probably flaws, too) at the hardware level. I'm not so sure myself in which direction the balance goes:

  • Encryption (without the key management, which I do not suppose the standard covers) is not that complex to get right and it can easily take advantage of hardware acceleration. (Yes, I don't quote numbers here. Schneier claims he hasn't had problems with encryption speed, but doesn't have numbers either ...)
  • It should be a lot easier to subvert a software component than it is to subvert a hardware component.
  • It is a lot harder to correct errors in hardware / firmware than in software and get users to apply the updates.
  • In many cases the key management is the weak point, not the encryption itself. And key management is hard to get right regardless of where the encryption sits.
  • I'm sure the abysmal track record of encrypted drives affects only the cheap USB drives and not the type of hardware we're talking about here. But, can I really be sure? (Serious) software solutions come from companies where security is the main business, whereas the hardware encryption will be implemented by storage companies which so far haven't had to care much about these issues.
  • Finally: This standard should replace a number of proprietary solutions since some vendors already do offer encrypted drives anyway. Assuming the standard is sane, this should certainly be a Good Thing™ in any case.
Posted by Adrian von Bidder in Tech at 16:50 | Comments (2) | Trackbacks (0)
< Software updates.... | Tech bits >

Comments
Display comments as (Linear | Threaded)

"In many cases the key management is the weak point, not the encryption itself. And key management is hard to get right regardless of where the encryption sits." Could you make that line bold? Maybe blinking too? I don't think it can be overstressed. :) Key management sucks, especially in Linux where there's a variety of tools using a variety of keys: SSH, GPG, SSL. Take for example using any given DVCS: 1. You branch from a remote repository using HTTP+SSL. 2. You make some changes and sign your commits using GPG. 3. You push your changes to a remote server via SSH. We've just used 2 or 3 different key management systems within one application! (It could be 2 if you're using something like Seahorse in Gnome which manages both SSH & GPG keys.) Luckily DVCSes are (hopefully) being used by people with enough knowledge to intelligently handle the various encryption technologies. So if they get a warning message about some key, certificate, or hash being incorrect, they know something is amiss. However, how many keys and key management systems is it really safe to expect non-developers/sysadmins to learn? I don't know, but the current key management tools leave me even taking risky shortcuts like using self-signed SSL certs and weak keyring passphrases. *sigh* (Tangentially, this sounds promising: http://michael.susens-schurter.com/blog/2008/10/20/fedoras-crypto-consolidation/ --Sorry for linking to my own blog.)
#1 Michael Schurter (Homepage) on 2009-02-05 20:31 (Reply)
I think you've missed the number one reason many people don't trust drives to do hardware encryption. Given that you can't look at the implementation, how do you know it doesn't do key escrow?
#2 Anonymous on 2009-02-05 20:50 (Reply)

Add Comment

E-Mail addresses will not be displayed and will only be used for E-Mail notifications.

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA
 
Submitted comments will be subject to moderation before being displayed.
 

Debian Planet

Raphaël Hertzog: Dpkg with multiarch support available in Debian experimental

Junichi Uekawa: qemu package is uninstallable in sid, and I think ipxe wants to replace it, not break it.

MJ Ray: Stop ACTA Marches Map

Jon Dowland: Rip it Up and Start Again

Lars Wirzenius: FOSDEM 2012

Jon Dowland: I Shall Wear Midnight

David Welton: BikeChatter.com for sale

Michal Čihař: Back from FOSDEM

Cyril Brulebois: dpkg with multiarch, a new hope

Andrew Cater: Open Advice - Free book detailing lessons for FLOSS

Russell Coker: Reliability of RAID

Steve Kemp: Some domains just don't learn

Michal Čihař: phpMyAdmin goes github

Petter Reinholdtsen: Saving power with Debian Edu / Skolelinux using shutdown-at-night

John Goerzen: Rain, A Funeral, and Excitement