On jeu., 2016-02-04 at 18:17 +0100, Arno Wagner wrote: > Maybe my crypto-knowledge deserts me here, but how is that > relevant for storage encryption? > > If somebody can replay old storage blocks, they have already > compromised your machine and can do what they want, Think external drives / removable storage? > > And authenticated encryption seems to not even apply to storage, > unless you are thinking about integrity. Indeed. > If so, wrong project, > as integrity always requires additional bits and LUKS/DM-cryopt > does not have them bu design. I am well aware of the need to store the integrity patterns, that's why I'm asking this in context of LUKS2. Thanks for the reply though. Regards, -- Yves-Alexis
Attachment:
signature.asc
Description: This is a digitally signed message part
_______________________________________________ dm-crypt mailing list dm-crypt@xxxxxxxx http://www.saout.de/mailman/listinfo/dm-crypt
