From owner-freebsd-geom@FreeBSD.ORG Thu Dec 2 19:19:59 2004 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A357616A4CE for ; Thu, 2 Dec 2004 19:19:59 +0000 (GMT) Received: from darkness.comp.waw.pl (darkness.comp.waw.pl [195.117.238.136]) by mx1.FreeBSD.org (Postfix) with ESMTP id CBD4443D31 for ; Thu, 2 Dec 2004 19:19:58 +0000 (GMT) (envelope-from pjd@darkness.comp.waw.pl) Received: by darkness.comp.waw.pl (Postfix, from userid 1009) id 842A0ACAF8; Thu, 2 Dec 2004 20:19:54 +0100 (CET) Date: Thu, 2 Dec 2004 20:19:54 +0100 From: Pawel Jakub Dawidek To: John-Mark Gurney Message-ID: <20041202191954.GE813@darkness.comp.waw.pl> References: <41AF3FCE.1030405@fer.hr> <20041202183559.GH19624@funkthat.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="MIdTMoZhcV1D07fI" Content-Disposition: inline In-Reply-To: <20041202183559.GH19624@funkthat.com> User-Agent: Mutt/1.4.2i X-PGP-Key-URL: http://people.freebsd.org/~pjd/pjd.asc X-OS: FreeBSD 5.2.1-RC2 i386 cc: Ivan Voras cc: freebsd-geom@freebsd.org Subject: Re: More geom classes? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Dec 2004 19:19:59 -0000 --MIdTMoZhcV1D07fI Content-Type: text/plain; charset=iso-8859-2 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Dec 02, 2004 at 10:35:59AM -0800, John-Mark Gurney wrote: +> Ivan Voras wrote this message on Thu, Dec 02, 2004 at 17:16 +0100: +> > I think I misunderstood something. Do you propose this (for 2 disks): +> >=20 +> > for each block to be written: +> > a) generate a block of random data +> > b) write random data to first disk +> > c) write random data xor user data to second disk +> >=20 +> > So, as long as any person has both disks, the data can be recovered.= =20 +> > Where's the security in that? +>=20 +> No, the point is to take say, a CDROM which you have preloaded with pure +> random data, i.e. burncd /dev/random, then you create a proper sized +> partition, then using gxor you meld the two... +>=20 +> Then for any read/write requests, you take the data, read from the OTP, +> xor the data, and pass it on... Then when you go away, you take the +> cdrom, w/o it, there is no data... +>=20 +> I like the idea, and it would be a perfect project from someone who is +> learning geom... I was thinking about simlar thing, as we use simlar mechanisms at work to share a secret between a few smart cards. I'm also not sure if CD-ROM with static random data will be safe enough. I want to generate random data before every write, xor data with generated random data and write both. It should also be faster, as I don't need to read random data first. It could be less safe from data integrity point of view in case of a power failure, when write request reach only one component. We can also implement both:) I think, I can do it quite fast. --=20 Pawel Jakub Dawidek http://www.wheel.pl pjd@FreeBSD.org http://www.FreeBSD.org FreeBSD committer Am I Evil? Yes, I Am! --MIdTMoZhcV1D07fI Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFBr2raForvXbEpPzQRArfiAJwK2ZX4qKhXzTmL8IaUCJmihVwMCACglm3d Iw2c3KV6qbBMeBrrLCJzWFc= =wcth -----END PGP SIGNATURE----- --MIdTMoZhcV1D07fI--