Protecting encryption server
Robert J. Hansen
rjh at sixdemonbag.org
Tue Jul 28 14:12:19 CEST 2020
> I am going to have a server machine doing encryption. How do you
> protect against server operator or admin tampering. This is a
> scenario where internal threat or hostility is high; you cannot trust
> your own guys. (Real situation; not paranoid.)
You can't. There is little to no defense possible against a trusted
insider that's gone rogue. The best you can do is to vet your people
carefully and, in the event of treachery, to use whatever legal means
are available to dissuade future treachery.
Kim Philby, Aldrich Ames, John Walker, Robert Hanssen, Reality Winner,
Chelsea Manning, Ed Snowden...
More information about the Gnupg-users
mailing list