From owner-freebsd-hackers@FreeBSD.ORG  Tue Feb 26 11:47:46 2008
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id A53B510658D5;
	Tue, 26 Feb 2008 11:47:46 +0000 (UTC) (envelope-from ap@bnc.net)
Received: from bis.bonn.org (www.bis.bonn.org [217.110.117.102])
	by mx1.freebsd.org (Postfix) with ESMTP id 90DDD13E3D9;
	Tue, 26 Feb 2008 10:28:38 +0000 (UTC) (envelope-from ap@bnc.net)
X-Junk-Score: 2 [X]
X-SpamCatcher-Score: 2 [X]
Received: from [194.39.192.125] (account bnc-mail@mailrelay.mailomat.net HELO
	bnc.net) by bis.bonn.org (CommuniGate Pro SMTP 5.2c4)
	with ESMTPSA id 9525726; Tue, 26 Feb 2008 11:30:47 +0100
X-SpamCatcher-Score: 2 [X]
Received: from [194.39.194.142] (account ap HELO wasabi.wlan.bnc.net)
	by bnc.net (CommuniGate Pro SMTP 5.2.0)
	with ESMTPSA id 3078495; Tue, 26 Feb 2008 11:28:28 +0100
Message-Id: <9111966B-DB9C-41E3-9D30-168D668585A9@bnc.net>
From: Achim Patzner <ap@bnc.net>
To: Uwe Doering <gemini@geminix.org>
In-Reply-To: <47C345C9.8010901@geminix.org>
Content-Type: multipart/signed; boundary=Apple-Mail-55-228725498; micalg=sha1;
	protocol="application/pkcs7-signature"
Mime-Version: 1.0 (Apple Message framework v919.2)
Date: Tue, 26 Feb 2008 11:28:27 +0100
References: <20080223010856.7244.qmail@smasher.org>	<20080223222733.GI12067@redundancy.redundancy.org>
	<31648FC5-26B9-4359-ACC8-412504D3257B@bnc.net>
	<47C345C9.8010901@geminix.org>
X-Mailer: Apple Mail (2.919.2)
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: freebsd-hackers@freebsd.org, "David E. Thiel" <lx@FreeBSD.org>
Subject: Re: Security Flaw in Popular Disk Encryption Technologies
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 26 Feb 2008 11:47:47 -0000


--Apple-Mail-55-228725498
Content-Type: text/plain;
	charset=US-ASCII;
	format=flowed;
	delsp=yes
Content-Transfer-Encoding: 7bit


Am 25.02.2008 um 23:48 schrieb Uwe Doering:
> Since it hasn't been mentioned so far: There are hard disk drives  
> that do encryption on the firmware level, so you don't have to store  
> keys on the OS level.

I wouldn't go that far as there isn't (better: I didn't find)
enough documentation on their mechanisms to satisfy my curiosity.

You might want to take a look at eNova (http://www.enovatech.net/)
who are pointing at interesting hardware using their crypto technology.


Achim



--Apple-Mail-55-228725498--