Date: Fri, 27 Jun 2003 01:48:29 +0200 From: "Poul-Henning Kamp" <phk@phk.freebsd.dk> To: Erez Zadok <ezk@cs.sunysb.edu> Cc: Peter B <pb@ludd.luth.se> Subject: Re: Encrypted filesystems Message-ID: <2583.1056671309@critter.freebsd.dk> In-Reply-To: Your message of "Thu, 26 Jun 2003 19:35:11 EDT." <200306262335.h5QNZBNF003209@agora.fsl.cs.sunysb.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <200306262335.h5QNZBNF003209@agora.fsl.cs.sunysb.edu>, Erez Zadok wr ites: >In message <3EFB4792.5080805@tenebras.com>, Michael Sierchio writes: >> Peter B wrote: >[...] >> > Which operating systems manage to effectivly to use encrypted swap..? >> >> That's quite a different problem -- Poul-Henning Kamp's done work >> in GEOM based disk encryption which is directly applicable to >> encrypting swap. Key management is always interesting. > >You might check the work/papers by Niels Provos on encrypted swap. > >We've been working on this problem for our NCryptfs. To provide a >comprehensive solution, we have to also handle swap. Luckily in Linux, >there are specific VOPs and APIs that make it easy to hook a crypto f/s w/ >the swap. I will present a paper on the GBDE encrypted disk facility at BSDcon2003. -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD committer | BSD since 4.3-tahoe Never attribute to malice what can adequately be explained by incompetence.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2583.1056671309>