Re: [PATCH 0/2] Secure deletion under JFFS2

From: Richard Weinberger
Date: Sun Jul 22 2018 - 15:06:06 EST

Next message: Trond Myklebust: "Re: [PATCH] fs/nfsd: Delete invalid assignment statements in nfsd4_decode_exchange_id"
Previous message: Chuck Lever: "Re: [PATCH] fs/nfsd: Delete invalid assignment statements in nfsd4_decode_exchange_id"
In reply to: Theuns Verwoerd: "[PATCH 1/2] jffs2: Provide forced dirty node cleanup via POLL signal"
Next in thread: Theuns Verwoerd: "Re: [PATCH 0/2] Secure deletion under JFFS2"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Jul 20, 2018 at 1:50 AM, Theuns Verwoerd
<theuns.verwoerd@xxxxxxxxxxxxxxxxxxx> wrote:
> Security certifications such as FIPS require the capability to securely
> delete files, which is problematic under JFFS2's log-based model. We can

Can you please be a little more specific about the certifications?

These days secure deletion at file system level is almost impossible to achieve
since you don't have full control of the storage stack.
I know, I know, In the raw flash case we have, but still. It makes
things very complicated.

A common approach do delete a file in a secure way is having it
encrypted and upon deletion
you forget the key.
Wouldn't that work for you too?

--
Thanks,
//richard

Next message: Trond Myklebust: "Re: [PATCH] fs/nfsd: Delete invalid assignment statements in nfsd4_decode_exchange_id"
Previous message: Chuck Lever: "Re: [PATCH] fs/nfsd: Delete invalid assignment statements in nfsd4_decode_exchange_id"
In reply to: Theuns Verwoerd: "[PATCH 1/2] jffs2: Provide forced dirty node cleanup via POLL signal"
Next in thread: Theuns Verwoerd: "Re: [PATCH 0/2] Secure deletion under JFFS2"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]