FreeBSD Mail Archives

Date:      Fri, 10 Aug 2018 16:08:01 +0200
From:      cpghost <cpghost@cordula.ws>
To:        freebsd-questions@freebsd.org
Subject:   Re: Erase memory on shutdown
Message-ID:  <faff1533-41c9-63a1-1c66-45c194cae140@cordula.ws>
In-Reply-To: <63033.108.68.162.197.1533484522.squirrel@cosmo.uchicago.edu>
References:  <20180805150241.1E186200349F8E@ary.qy> <4e70e969-14f7-c65d-96d2-dd1610499cd0@irk.ru> <63033.108.68.162.197.1533484522.squirrel@cosmo.uchicago.edu>


[-- Attachment #1 --]
On 08/05/18 17:55, Valeri Galtsev wrote:
> Another route could be encryption of RAM on-the-fly while system runs, yet
> it is questionable where the encryption key itself is kept to be
> unaccessible for the attacker in the attack above, and boot of such system
> may require warm body present.

What about SEV?

https://developer.amd.com/amd-secure-memory-encryption-sme-amd-secure-encrypted-virtualization-sev/
https://github.com/AMDESE/AMDSEV

> Valeri

-cpghost.


[-- Attachment #2 --]
0�	*�H��
��0�10
	`�He0�	*�H��
��0�00���/��A|
���
�*60
	*�H��
0��10	UGB10UGreater Manchester10USalford10U
COMODO CA Limited1=0;U4COMODO RSA Client Authentication and Secure Email CA0
171220000000Z
181220235959Z0#1!0	*�H��
	cpghost@cordula.ws0�"0
	*�H��
�0�
��Wqo�r�\�M��q�!��%���`���CN5e;F��_�.:��,θ�������|@�G��k��b��B��1����������[��,���n����@�A�8��_���<R��[�J+��V��cy�>|
�t�`7�����(>8���+�0��Q����h�V��E-8���TO��ڪI����K�Ǟ��(7�
MΞ�;+��H� (y��$�e���������>����dDӹ�FG��y�K+dϜB������0��0U#0���l�����a|�=+qH^ċ�0U%Pa�po_@[���'6	�0U��0U�00 U%0++�10	`�H��B 0FU ?0=0;+�10+0)+https://secure.comodo.net/CPS0ZUS0Q0O�M�K�Ihttp://crl.comodoca.com/COMODORSAClientAuthenticationandSecureEmailCA.crl0��+0}0U+0�Ihttp://crt.comodoca.com/COMODORSAClientAuthenticationandSecureEmailCA.crt0$+0�http://ocsp.comodoca.com0U0�cpghost@cordula.ws0
	*�H��
�t��W�)T�(���tH�C�O��C�D�3,�b�ͳ�����I^��+�Tq�A�.��V����Mu��Hل���v%@��
���9N���+>��/��ž]�h(S��GN[�q�-�6B��-;���Mm�AP�^0�E�^�g�_D��8(J�%':.j��w�ǥ@��	�D��-�������Ƽ��@�]�������-����E�i��a[���)b�Ȼ�v�ӟ��7~��پ�>��M0��0�Πj��8;�+k��ٸ�RV0
	*�H��
0��10	UGB10UGreater Manchester10USalford10U
COMODO CA Limited1+0)U"COMODO RSA Certification Authority0
130110000000Z
280109235959Z0��10	UGB10UGreater Manchester10USalford10U
COMODO CA Limited1=0;U4COMODO RSA Client Authentication and Secure Email CA0�"0
	*�H��
�0�
����W�(vu@�8���v!P�%yL���}:X>��1.��4vلj��=4H���������K �hyt4�z|��e`'�"��2��@rF5��P�3*U�T��+�%4D5��+
���ZS�u+��=7F_��Z��t����e���
�>)�
��94�F���ro�8��pN��h�FF���#���Ne6���/M{UW���ֱ�m���A��Y����T"o�)�CI�	����m8�4$.zW4 ��r�^M9,R��$
����<0�80U#0���~=���<����8���22�0U��l�����a|�=+qH^ċ�0U��0U�0�0U 
00U 0LUE0C0A�?�=�;http://crl.comodoca.com/COMODORSACertificationAuthority.crl0q+e0c0;+0�/http://crt.comodoca.com/COMODORSAAddTrustCA.crt0$+0�http://ocsp.comodoca.com0
	*�H��
�x\��(4O<�_VΟ�V쏢k���I��/5��@��q���B!�f�k&k�n���{hJd|�� q��[��L���ǿᓬ�?���"@�f�C���O�ݐrX�ur���J�H5;#���6����8�jle��) �)Y���4N�ezyq{:��������k�x��%���iچ:w#f6�H�LP~jo9KX��n��M������#:�!!6�����9i\���}�^�M�;�TSX�7�	̯�3�]����Tc�6�O$�v�oX�*5!���������4��������.��a���KE8�HI�Ĺ7�?������Ar���}�r#� ��R�/�h�<�ס��n���uy<1	3�mɔv�#��~&�p��v�g�' s��kMH#��/ƨ����$/uX�q��T���u�(�|�^�-vM҆�NKX�7fA\X��5s��h2���q����P�\Yǟ�E��NR�ar��pG��tZ�p��_"���k�7Dd�JVG�z1�80�40��0��10	UGB10UGreater Manchester10USalford10U
COMODO CA Limited1=0;U4COMODO RSA Client Authentication and Secure Email CA�/��A|
���
�*60
	`�He��[0	*�H��
	1	*�H��
0	*�H��
	1
180810140801Z0/	*�H��
	1" ��^��T��Ds�
��U<"�����$�$0l	*�H��
	1_0]0	`�He*0	`�He0
*�H��
0*�H��
�0
*�H��
@0+0
*�H��
(0��	+�71��0��0��10	UGB10UGreater Manchester10USalford10U
COMODO CA Limited1=0;U4COMODO RSA Client Authentication and Secure Email CA�/��A|
���
�*60��*�H��
	1�����0��10	UGB10UGreater Manchester10USalford10U
COMODO CA Limited1=0;U4COMODO RSA Client Authentication and Secure Email CA�/��A|
���
�*60
	*�H��
�(h�7�s�5.=�m�,5끷U=oP�a\`�*�����?m�%�#�,]B3�8�h�y�>D\�I�bq%�D���S�_+��d��_�Z�ql����r�D�Hb���Xm�lڹlh;�8����"�o
�W���M�VA�q��1��y�ܢH�:2;8f�%�C��QS�9�}e��MH� �9t*�i�7X�[�и%4W��hD��j��#	��W��@��̆Wq[.���<NH���]߹e�h�	,
�

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?faff1533-41c9-63a1-1c66-45c194cae140>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation