From owner-freebsd-geom@FreeBSD.ORG Wed Jan 16 16:59:29 2008 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0D5D216A421 for ; Wed, 16 Jan 2008 16:59:29 +0000 (UTC) (envelope-from crahman@gmail.com) Received: from nz-out-0506.google.com (nz-out-0506.google.com [64.233.162.227]) by mx1.freebsd.org (Postfix) with ESMTP id BE0A713C447 for ; Wed, 16 Jan 2008 16:59:28 +0000 (UTC) (envelope-from crahman@gmail.com) Received: by nz-out-0506.google.com with SMTP id l8so229369nzf.13 for ; Wed, 16 Jan 2008 08:59:28 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; bh=cTis91OAiH22TwEFd/N8RpKttpFFXjq+kZNYCm4SGGU=; b=Fh0G03f/XJBiw3fP6+R9e7tiZb2FIZMk3wibZQJ6FZ1yrZ2Vap7IVN4mFy2xz/Bk79q4OVQl7sZAF7ogKbnkygOlDWjT9zNoCYhz2Iq0Toomud1JOUCQ8m12vkleRmH7YvS6xF6B12ZO7t5/1hg2MRU1UZzC7iddMYgounbTx/E= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=jDV1e37+5lx7nbbrsTmfGua4QuMLM/982HaISYcPLkj3FHCKn73uW5fzVpfyi+osNNit1AgrG9wLKnj16zQVlOh8SQnKPNPhJvrJb/b+dLFoJHmKmE1E6zZBvmLyfp+ALkXstZ9MuKJTtSiW4xWHTn78OPdWYXXBEOjssgM0W4o= Received: by 10.114.88.1 with SMTP id l1mr1126071wab.79.1200501149932; Wed, 16 Jan 2008 08:32:29 -0800 (PST) Received: by 10.115.19.7 with HTTP; Wed, 16 Jan 2008 08:32:29 -0800 (PST) Message-ID: <9e77bdb50801160832p39619f1fm85bf1454fead3357@mail.gmail.com> Date: Wed, 16 Jan 2008 09:32:29 -0700 From: "Cyrus Rahman" To: freebsd-geom@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: Authentication with geom_eli X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Jan 2008 16:59:29 -0000 The addition of data integrity verification to geom_eli is a great thing and very useful. As it is implemented, it also provides some considerable measure of authentication. This also has utility, but for the applications I have in mind it is less useful than either encryption or integrity verification. With this in mind, the addition of a less expensive authentication algorithm, say a CRC, which would provide still provide a check on the channel between geom_eli and the physical disk sectors without the overhead of md5 or sha256, would be extremely useful.