Re: [dm-crypt] [dm-devel] dm-crypt performance

From: Milan Broz
Date: Tue Apr 09 2013 - 14:59:36 EST

Next message: Arnd Bergmann: "Re: [PATCH 3/8] dmaengine: ste_dma40: Actually write the runtime configuration to registers"
Previous message: Arnd Bergmann: "Re: [PATCH 5/8] dmaengine: ste_dma40: Ensure src and dst registers are configured correctly"
In reply to: Mikulas Patocka: "Re: [dm-devel] dm-crypt performance"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 9.4.2013 20:08, Mikulas Patocka wrote:
>
>
> On Tue, 26 Mar 2013, Milan Broz wrote:
>
>> - Are we sure we are not inroducing some another side channel in disc
>> encryption? (Unprivileged user can measure timing here).
>> (Perhaps stupid reason but please do not prefer performance to security
>> in encryption. Enough we have timing attacks for AES implementations...)
>
> So use serpent - it is implemented without any data-dependent lookup
> tables, so it has no timing attacks.

I wish using something different than AES is just such simple technical issue
for many people. But e.g. just try it in FIPS mode where AES is the only option:-)

Anyway, using bio_associate_current() seems to be the right way to try now...

Milan
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Arnd Bergmann: "Re: [PATCH 3/8] dmaengine: ste_dma40: Actually write the runtime configuration to registers"
Previous message: Arnd Bergmann: "Re: [PATCH 5/8] dmaengine: ste_dma40: Ensure src and dst registers are configured correctly"
In reply to: Mikulas Patocka: "Re: [dm-devel] dm-crypt performance"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]