Summary: | GELI leaves streaks of zeros for every encrypted sector; suggestion to randomize | ||
---|---|---|---|
Product: | Base System | Reporter: | Arjan van der Velde <vandervelde.ag> |
Component: | kern | Assignee: | freebsd-geom (Nobody) <geom> |
Status: | New --- | ||
Severity: | Affects Only Me | CC: | cem |
Priority: | --- | ||
Version: | CURRENT | ||
Hardware: | Any | ||
OS: | Any |
Description
Arjan van der Velde
2019-01-21 14:03:17 UTC
I'm having trouble imagining an attack that is aided by the end of sector zeroes. Do you have something specific in mind? (In reply to Conrad Meyer from comment #1) plausible deniability of the existence of structured data on the provider. if all data on a drive is indistinguishable from random, one would be able to deny that there is data on the drive at all. I'm having trouble seeing that as plausible or any different from partially zeroed :-). You could claim (with equal plausibility, IMO) that the alternating random / zeroes doesn't store any data; it's just silly and isn't going to be believed in the same way it won't if you make that claim with all random bytes. You're familiar with https://xkcd.com/538/ ? (In reply to Conrad Meyer from comment #3) ok. well, regardless of opinions on what generally would actually happen when asked for a password by law enforcement, i think there is a case for making it harder to detect the presence of a geli provider so, i figured i put the idea out there. -- Arjan Wasn't GEOM BDE designed to allow for plausible deniability, and even an attempt at defeating rubber-hose cryptography? |