Andre's been plugging this for a while

Post #23,256 by kmself 1/5/02 5:37:57 PM Reply	Andre's been plugging this for a while He let fly a long rant on CPRM as well. This is the scary shit, thanks for the heads-up. DMCA and SSSCA don't help us in this regard either. I've heard numerous sources say that software-based systems crypto won't work, and it's possible that even hardware-based solutions may be exploitable (references vary). My sense is that end-to-end crypto would be generally difficult to back out. `-- Karsten M. Self [link\|mailto:kmself@ix.netcom.com\|kmself@ix.netcom.com] [link\|http://kmself.ix.netcom.com/\|[link\|http://kmself.ix.netcom.com/\|http://kmself.ix.netcom.com/]] What part of "gestalt" don't you understand?`
Post #23,260 by pwhysall 1/5/02 6:16:50 PM Reply	The problem with pervasive crypto... ...is recovering the data in the event of disaster. Your server goes tits up, or $EVIL_EX_EMPLOYEE has changed the passwords on the server before going off to be a transgendered freedom fighter in Colombia. You have backups of an encrypted RAID array, and not much else. You restore the data. What's the passphrase/key? Well, Bill and George know it. Whoops, they were hit by the same flying elephant that knocked out your server, or have followed $EVIL_EX_EMPLOYEE to fight for justice in the jungle. Hey, there's a copy on Joe's laptop. Whoops, got stolen. Been a bad week. And all our corporate accounts data is encrypted and it'll take longer than the age of the universe to brute force it. There is, of course, an alternative - used by Microsoft in Windows 2000. You designate a Recovery Agent (typically the Domain Admins group) and they can decrypt anything encrypted IF THE RECOVERY AGENT WAS PUT IN PLACE BEFOREHAND. The process is tedious and convoluted, involving shuffling certificates around. Joe Accounts Worker can't expect to encrypt his hard disk and then magically have the IT department decrypt it when he can't remember his password. What makes Windows Encryption worse is that it's done against the security principal (the user) - they choose a directory or file and in the properties, choose to encrypt it. The bad part of this is that the only thing you need to crack is the user's regular domain password. And we all know how well users choose their passwords. Peter Shill For Hire [link\|http://www.kuro5hin.org\|There is no K5 Cabal]
Post #23,271 by kmself 1/5/02 8:02:25 PM Reply	Backups & encryption That's one of the topics covered in someone's [link\|http://kmself.home.netcom.com/Linux/FAQs/backups.html\|Linux Backups Mini-FAQ], under "Other Issues". My thinking is that backups should be treated as data access violations waiting to happen, and that physical security over backups are essential. The problems of encrypted data storage by default, and the inconvenience it mandates, has been covered broadly...though naturally I can't find any references to the issue immediately.... `-- Karsten M. Self [link\|mailto:kmself@ix.netcom.com\|kmself@ix.netcom.com] [link\|http://kmself.ix.netcom.com/\|[link\|http://kmself.ix.netcom.com/\|http://kmself.ix.netcom.com/]] What part of "gestalt" don't you understand?`
Post #23,319 by static 1/6/02 8:16:01 PM Reply	Encrypted local data storage is a minefield. Trust me, I've been there. Well, on the fringes, at least. The only way it works for end-users (e.g. reasonably un-teched senior executives) is if it is part of a secure PC package - which brings up issues of key management. And then they don't see the point in picking individual files to encrypt. The downside is not that encrypting the whole disk needs to be pretty fast but you need a personnel structure for managing supervisor passwords in case they forget their own or have hardware problems. In other words, it has to be managed by the same people who already manage encrypting services in IT. Or the end-users will quickly find it Too Hard To Do. Wade. "All around me are nothing but fakes Come with me on the biggest fake of all!"

Welcome to IWETHEY!