Hibernation and secret keys
Ingo Klöcker
kloecker at kde.org
Thu Feb 12 00:09:55 CET 2009
On Wednesday 11 February 2009, Christoph Anton Mitterer wrote:
> On Wed, 2009-02-11 at 22:37 +0100, Ingo Klöcker wrote:
> > > Your machine suspends, and writes a snapshot of its memory to
> > > disk. Sure, let's say it's even encrypted. When you wake the
> > > machine, is the encrypted disk still mounted?
> >
> > Obviously not.
>
> Why? This IS of course possible...
Do you mean in a secure way? If yes, then that's not what I understood
that David meant.
> Of course you need something secure (e.g. an USB stick) to boot from.
USB stick and secure? :-)
> And one should prevent Suspend to RAM, due to well known colling
> attacks...
Of course. Another "obviously" that might be necessary to state
explicitly because it might not be obvious to everybody.
Regards,
Ingo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/attachments/20090212/aaed9762/attachment.pgp>
More information about the Gnupg-users
mailing list