Date: Thu, 4 Jan 2018 10:58:21 -0500 From: Mike Tancsa <mike@sentex.net> To: Eric McCorkle <eric@metricspace.net>, "freebsd-security@freebsd.org" <freebsd-security@freebsd.org> Subject: Re: Potential band-aid for Meltdown Message-ID: <599c8fe0-3745-2fa8-4bd6-d89f061f29f4@sentex.net> In-Reply-To: <30300a34-d0d9-efbf-c9b3-6375703f65a0@metricspace.net> References: <30300a34-d0d9-efbf-c9b3-6375703f65a0@metricspace.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On 1/4/2018 10:27 AM, Eric McCorkle wrote: > I was thinking over meltdown mitigations this morning, and a thought > occurred to me (which falls in line with general ideas I've been pursuing) A pretty neat idea. But in terms of keeping crypto keys safe, why not something behind a pkcs11 interface (e.g. eToken) or tpm ? ---Mike > > I realize it's not a perfect solution by far, but it would provide some > level of mitigation (especially for things like GELI) that could hold > people over until they can replace their hardware. -- ------------------- Mike Tancsa, tel +1 519 651 3400 Sentex Communications, mike@sentex.net Providing Internet services since 1994 www.sentex.net Cambridge, Ontario Canada http://www.tancsa.com/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?599c8fe0-3745-2fa8-4bd6-d89f061f29f4>