Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.
Sign upIntegrate Tresor kernel patch for cold boot attack protection of the disk encrytion key #716
Comments
marmarek
added this to the Release 2 Beta 3 milestone
Mar 8, 2015
marmarek
added
enhancement
C: kernel
P: major
labels
Mar 8, 2015
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
|
Modified by joanna on 12 Mar 2013 11:11 UTC |
marmarek
added
P: minor
and removed
P: major
labels
Mar 8, 2015
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
|
Modified by joanna on 1 Aug 2013 13:02 UTC |
marmarek
modified the milestones:
Release 3,
Release 2 Beta 3
Mar 8, 2015
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
marmarek
Mar 8, 2015
Member
Comment by marmarek on 17 Apr 2014 21:47 UTC
Some additional links (Tresor for Xen):
http://www.defcon.org/images/defcon-21/dc-21-presentations/Selifonov/DEFCON-21-Selifonov-A-Password-is-Not-Enough-Why-Disk-Encryption-is-Broken.pdf
Author refers to repository at https://github.com/thyth/phalanx, but it is no longer available...
|
Comment by marmarek on 17 Apr 2014 21:47 UTC Author refers to repository at https://github.com/thyth/phalanx, but it is no longer available... |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
marmarek
Mar 8, 2015
Member
Comment by anonymous on 8 Nov 2014 20:00 UTC
There is an implemented and maintained set of kernels for Arch Linux with TRESOR. The following are links to relevant information;
Technische Fakultt TRESOR: http://www1.informatik.uni-erlangen.de/tresor
Arch Linux AUR TRESOR: https://aur.archlinux.org/packages/?O=0&K=tresor
This could prove useful to look at, for ideas in Qubes implementation.
|
Comment by anonymous on 8 Nov 2014 20:00 UTC Technische Fakultt TRESOR: http://www1.informatik.uni-erlangen.de/tresor Arch Linux AUR TRESOR: https://aur.archlinux.org/packages/?O=0&K=tresor This could prove useful to look at, for ideas in Qubes implementation. |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
marmarek
Mar 8, 2015
Member
Comment by fowlslegs on 8 Dec 2014 00:27 UTC
We could get rid of the user password altogether since it's function is to lock the screen and with TRESOR it's just being redundant.
|
Comment by fowlslegs on 8 Dec 2014 00:27 UTC |
marmarek commentedMar 8, 2015
Reported by joanna on 24 Feb 2013 15:22 UTC
More details and thoughts:
https://groups.google.com/group/qubes-devel/msg/623ab08c2c743e5e
We need to somehow "integrate" all the various passphrases: LUKS, Tresor's and screenlocker preferably into one.
Migrated-From: https://wiki.qubes-os.org/ticket/716