Re: safety of encrypted filesystems

To: debian-security@lists.debian.org
Subject: Re: safety of encrypted filesystems
From: Michael Buchholz <michael@bubi.dnsalias.net>
Date: Fri, 17 Jun 2005 08:57:13 +0200
Message-id: <[🔎] 20050617085713.0d042cdf.michael@bubi.dnsalias.net>
In-reply-to: <[🔎] 20050617064603.GA21188@cirrus.madduck.net>
References: <[🔎] 20050617061508.GA19367@cirrus.madduck.net> <[🔎] 87hdfx1ofi.fsf@deneb.enyo.de> <[🔎] 20050617064603.GA21188@cirrus.madduck.net>

On Fri, 17 Jun 2005 08:46:03 +0200
martin f krafft <madduck@debian.org> wrote:

> Of course blocks are small, e.g. 64 bytes. However, doesn't CBC or
> EBC make sure that every block is chained to its predecessor, making
> even the very last block of a file dependent on the bits of the very
> first block?

No.
If it would be that way, it would allways be necessary to decrypt the
whole filesystem, when you want to read the last block. Or you have to
store a decrypted version in memory...
And also, when you write any block, you have to reencrypt all the
remaining blocks.

I don't know, what kind of CPU you use, but on my system, that would be
really time consuming!!!

The loss of a single block on a harddist "should" be protected by using
some kind of "forward error correction" like the Solomon-Reed one.

-- 
mit freundlichen Gruessen / with friendly regards
Michael Buchholz

Reply to:

Follow-Ups:
- Re: safety of encrypted filesystems
  - From: martin f krafft <madduck@debian.org>

References:
- safety of encrypted filesystems
  - From: martin f krafft <madduck@debian.org>
- Re: safety of encrypted filesystems
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: safety of encrypted filesystems
  - From: martin f krafft <madduck@debian.org>

Prev by Date: Re: safety of encrypted filesystems
Next by Date: Re: safety of encrypted filesystems
Previous by thread: Re: safety of encrypted filesystems
Next by thread: Re: safety of encrypted filesystems
Index(es):
- Date
- Thread