Date: Sun, 31 Jul 2005 17:08:45 +0200 From: Pawel Jakub Dawidek <pjd@FreeBSD.org> To: Poul-Henning Kamp <phk@phk.freebsd.dk> Cc: freebsd-geom <freebsd-geom@freebsd.org>, freebsd-hackers <freebsd-hackers@freebsd.org>, freebsd-security <freebsd-security@freebsd.org>, Allan Fields <bsd@afields.ca>, Alexander Leidinger <Alexander@Leidinger.net>, "Ronnel P. Maglasang" <rmaglasang@infoweapons.com> Subject: Re: Kernel Source Divergence, Security (was: booting gbde-encrypted filesystem) Message-ID: <20050731150845.GJ636@darkness.comp.waw.pl> In-Reply-To: <10601.1122818847@phk.freebsd.dk> References: <20050731135919.GA43753@afields.ca> <10601.1122818847@phk.freebsd.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
--gMR3gsNFwZpnI/Ts Content-Type: text/plain; charset=iso-8859-2 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Jul 31, 2005 at 04:07:27PM +0200, Poul-Henning Kamp wrote: +> In message <20050731135919.GA43753@afields.ca>, Allan Fields writes: +>=20 +> >Yes, this is all very nice, but when is someone actually going to +> >commit it? ;) +>=20 +> I'm (as always) short of time, and GBDE is not the top priority +> for me for the time being. +>=20 +> So I am more than happy to see people band together and improve +> gbde. +>=20 +> The main work necessary is to polish the userland program and that +> is relatively trivial programming, so anyone should be able to pick +> that up: just go for it. +>=20 +> Giving gbde a taste function so that the root filesystem can be +> protected by GBDE, this is also OK by me in principle, but I'd like +> to review the patch before it gets committed because there are a +> large number of dragons. +>=20 +> In P4:phk_gbde there is the beginning of hw-crypto support through +> opencrypto(9), if somebody wants to work on that, get in touch with +> me. I'm starting to wonder if we couldn't create one storage-crypto-base and rewrite gbde, geli on top of it. geli(8) is complete, ie. you can use any command on attached and detached providers, you can backup your metadata, protect your passphrase with PKCS#5v2, use files as a key part, etc. gbde(8) (userland tool) is not finished (all those things I've in geli already are on its todo list). I've plan for another crypto-storage class, which will provide privacy and integrity verification (the very thing we are missing now). I want another class, because it will be slower than geli in both crypto-time and disk-access-time aspects. Another possibility is to integrate two classes and allow user to decide if he wants privacy, integrity verification or both. If someone can spend time on integreting gbde crypto scheme into geli where userland part is complete, where crypto(9) is used already, etc. that'd be cool. The truth is, that the main difference between gbde/geli is how crypto is used on disk, the other elements (managing keys, protecting passphrases, metadata backups, encrypted root partition, etc.) are or could be the same. --=20 Pawel Jakub Dawidek http://www.wheel.pl pjd@FreeBSD.org http://www.FreeBSD.org FreeBSD committer Am I Evil? Yes, I Am! --gMR3gsNFwZpnI/Ts Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFC7Ol9ForvXbEpPzQRAi4TAJ9CF+1bk001L51nLuv1W1zyZvlX9ACeOD0Z kn+CkQGHGOlJE3grlw5YElk= =TU/M -----END PGP SIGNATURE----- --gMR3gsNFwZpnI/Ts--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050731150845.GJ636>