[15578] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Passwords can sit on disk for years

daemon@ATHENA.MIT.EDU (Matt Crawford)
Tue Jun 8 13:17:21 2004

X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Tue, 08 Jun 2004 11:30:03 -0500
From: Matt Crawford <crawdad@fnal.gov>
In-reply-to: <EXCHMX2yfyz5b6KZmcK00004c8d@relay.lsuhsc.edu>
To: jdean@lsuhsc.edu
Cc: cryptography23094893@aquick.org,
	crypto <cryptography@metzdowd.com>


On Jun 8, 2004, at 9:44, jdean@lsuhsc.edu wrote:

> And of course, the article didn't get it right.  Because of optimizing
> compilers, it is *not* trivial to zero passwords.

The full paper does make that point.
http://www.stanford.edu/~talg/papers/USENIX04/abstract.html

Me, I run machines with no swap disk if they have important keys on 
them, and aren't in a very secure facility.  A master decryption key is 
needed at boot time, of course.

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[15578] in cryptography@c2.net mail archive

Re: Passwords can sit on disk for years

daemon@ATHENA.MIT.EDU (Matt Crawford)Tue Jun 8 13:17:21 2004

daemon@ATHENA.MIT.EDU (Matt Crawford)
Tue Jun 8 13:17:21 2004