Re: recovering from compromised keys

To: debian-devel@lists.debian.org
Subject: Re: recovering from compromised keys
From: Paul Wise <pabs@debian.org>
Date: Fri, 24 Sep 2010 10:49:21 +0800
Message-id: <[🔎] AANLkTi=4oPXTHDmAVE0FgiPZPMEZ7A66+vd+P1iF9HgL@mail.gmail.com>
In-reply-to: <[🔎] 20100923160755.GA29654@reptile.pseudorandom.co.uk>
References: <[🔎] 20100923141306.GA32564@reptile.pseudorandom.co.uk> <[🔎] 20100923145026.GA5375@debian.org> <[🔎] 20100923151401.GA7898@glandium.org> <[🔎] 87lj6seask.fsf@mirexpress.internal.placard.fr.eu.org> <[🔎] 20100923160755.GA29654@reptile.pseudorandom.co.uk>

On 9/24/10, Simon McVittie <smcv@debian.org> wrote:

> Suspend-to-RAM also works, but is obviously not secure against attackers
> waking up the laptop and exploiting some bug in a locked screensaver, or
> remote access, or whatever.

Don't forget about folks using cold boot attacks to grab your key from
RAM. I also saw a paper somewhere about returning the system to a
running state after such attacks.

-- 
bye,
pabs

http://wiki.debian.org/PaulWise

Reply to:

Follow-Ups:
- Re: recovering from compromised keys
  - From: Roland Mas <lolando@debian.org>

References:
- Re: recovering from compromised keys
  - From: Simon McVittie <smcv@debian.org>
- Re: recovering from compromised keys
  - From: Osamu Aoki <osamu@debian.org>
- Re: recovering from compromised keys
  - From: Mike Hommey <mh@glandium.org>
- Re: recovering from compromised keys
  - From: Roland Mas <lolando@debian.org>
- Re: recovering from compromised keys
  - From: Simon McVittie <smcv@debian.org>

Prev by Date: Bug#597903: ITP: gnome-gmail -- Make Gmail an option for the default GNOME mail handler
Next by Date: Re: Google Summer of Code 2010 Debian Report
Previous by thread: Re: recovering from compromised keys
Next by thread: Re: recovering from compromised keys
Index(es):
- Date
- Thread