Re: [PATCH RESEND 1/1] crypto API: RSA algorithm patch (kernel version 2.6.20.1)

From: Indan Zupancic
Date: Wed Mar 21 2007 - 08:37:05 EST

Next message: Artem Bityutskiy: "Re: [PATCH 00/22 take 3] UBI: Unsorted Block Images"
Previous message: JÃrn Engel: "Re: [PATCH 00/22 take 3] UBI: Unsorted Block Images"
In reply to: Indan Zupancic: "RE: [PATCH RESEND 1/1] crypto API: RSA algorithm patch (kernel version 2.6.20.1)"
Next in thread: Tasos Parisinos: "Re: [PATCH RESEND 1/1] crypto API: RSA algorithm patch (kernel version 2.6.20.1)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, March 21, 2007 10:15, Tasos Parisinos wrote:
> Protecting a TripleDES key in high security standards is not as
> simple as making the kernel read
> protected, you need a whole lot and
> that also means hardware (cryptomemories e.t.c)
> So you forget about all this overhead when you use assymetric

Ah, you're talking about fishing the key out of RAM here, right?
My point stays the same for that: If you can't read protect the
kernel RAM, small chance you can write protect it. And then they
can just bypass all signature checking you put in it anyway.

Greetings,

Indan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Artem Bityutskiy: "Re: [PATCH 00/22 take 3] UBI: Unsorted Block Images"
Previous message: JÃrn Engel: "Re: [PATCH 00/22 take 3] UBI: Unsorted Block Images"
In reply to: Indan Zupancic: "RE: [PATCH RESEND 1/1] crypto API: RSA algorithm patch (kernel version 2.6.20.1)"
Next in thread: Tasos Parisinos: "Re: [PATCH RESEND 1/1] crypto API: RSA algorithm patch (kernel version 2.6.20.1)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]