Re: RAM encryption and key storing in CPU

From: Richard Weinberger
Date: Tue May 26 2015 - 14:32:19 EST

Next message: Hartley Sweeten: "RE: [PATCH] staging: comedi: comedi_8254.h: make self-reliant"
Previous message: Paul E. McKenney: "Re: [PATCH RFC] rcu: change return type to bool"
In reply to: someone called: "RAM encryption and key storing in CPU"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, May 26, 2015 at 5:21 PM, someone called
<someonecalled@xxxxxxxxxxxxx> wrote:
> https://www1.informatik.uni-erlangen.de/tresor
>
> Is this solution already in the Linux kernel? If yes, how can a Linux enduser turn it on? If no, how can we get the code/idea in the mainline? What are the arguments against it?

No, these patches are not mainline.
IMHO such solutions paper over the real problem. Adding new layers won't help.
If we store keys in CPU registers, secret agencies will (or have
already) develop tools to dump them too.

--
Thanks,
//richard
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Hartley Sweeten: "RE: [PATCH] staging: comedi: comedi_8254.h: make self-reliant"
Previous message: Paul E. McKenney: "Re: [PATCH RFC] rcu: change return type to bool"
In reply to: someone called: "RAM encryption and key storing in CPU"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]