Re: Encrypting an External HDD

To: debian-user@lists.debian.org
Subject: Re: Encrypting an External HDD
From: David Christensen <dpchrist@holgerdanske.com>
Date: Wed, 15 Apr 2015 08:30:04 -0700
Message-id: <[🔎] 552E83FC.4090904@holgerdanske.com>
In-reply-to: <[🔎] 201504151417.48084.frederic.marchal@wowtechnology.com>
References: <[🔎] 20150415075320.78d581ff@lapsdeb> <[🔎] 201504151417.48084.frederic.marchal@wowtechnology.com>

On 04/15/2015 05:17 AM, Frédéric Marchal wrote:

I understand that filling the encrypted partition (/dev/mapper/backup2) with
zeros is equivalent to filling the unencrypted partition (/dev/sdb1) with
random data as explained by other procedures.

I've found 'shred' to be the fastest way to fill a drive or partitionwith random data.

Filling a dm-crypt mapped device file with all zeros gives an attackerlots of predictable plain text for cracking your password.

(Formatting a dm-crypt mapped device file also provides a certain amountof predictable plain text, but is unavoidable.)

It use /dev/urandom instead of the default /dev/random to generate the master
key. The documentation says it is better to use urandom as random may block if
the computer entropy is low.

/dev/random is for cryptographically secure random numbers, such as forcryptographic keys. It requires a source of entropy to operate, andwill block until entropy is available. Thus, on most desktop computers,it is only suitable for small amounts of random numbers.

On Linux, /proc/sys/kernel/random/entropy_avail contains the kernel'sestimate of available entropy (in bits):


    https://en.wikipedia.org/wiki/Entropy_%28computing%29

    2015-04-15 07:37:24 dpchrist@t2250 ~
    $ cat /proc/sys/kernel/random/entropy_avail
    2364


If /dev/random blocks, wiggle your mouse to create entropy.

/dev/urandom is for non-cryptographic/ low-security random numbers, suchas for games. It will use entropy as available, otherwise it willmathematically generate pseudo-random numbers. It does not block andcan generate large amounts of random data quickly, but is vulnerable toattack.



ISAAC seems to be a respected PRNG algorithm:

    http://burtleburtle.net/bob/rand/isaacafa.html

Hardware random number generators promise the best of both worlds --security and speed. For example, Intel SecureKey technology provides a5 Gb/s stream of cryptographically secure random numbers:



https://software.intel.com/en-us/blogs/2012/05/14/what-is-intelr-secure-key-technology

Intel AES-NI technology accelerates software encryption/ decryption. My3.2 GHz HT P4 machine without AES-NI is CPU bound around ~70 MB/s on oneHDD. My quad HT Core i7-2600S (1.6~3.8 GHz) with AES-NI has no problemkeeping up with 400+ MB/s RAID.



https://software.intel.com/en-us/articles/intel-advanced-encryption-standard-instructions-aes-ni

Error-correcting code (ECC) memory has higher reliability than non-ECCmemory.


    https://en.wikipedia.org/wiki/ECC_memory

ECC memory is strongly advised for ZFS, as ZFS can destroy your data ondisk if you have memory problems:


    https://www.google.com/?gws_rd=ssl#q=zfs+ecc


David

Reply to:

Follow-Ups:
- Re: Encrypting an External HDD
  - From: Celejar <celejar@gmail.com>

References:
- Encrypting an External HDD
  - From: Stephen R Guglielmo <srguglielmo@gmail.com>
- Re: Encrypting an External HDD
  - From: Frédéric Marchal <frederic.marchal@wowtechnology.com>

Prev by Date: Re: apt stuck at "Reading database"
Next by Date: Re: Is gnome-core *really* the gnome minimal install?
Previous by thread: Re: Encrypting an External HDD
Next by thread: Re: Encrypting an External HDD
Index(es):
- Date
- Thread