Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
From: Oliver Neukum <oneukum@xxxxxxxx>
Date: Tue, 07 Aug 2018 12:04:19 +0200
Cc: Pavel Machek <pavel@xxxxxx>, "Rafael J . Wysocki" <rafael.j.wysocki@xxxxxxxxx>, Eric Biggers <ebiggers@xxxxxxxxxx>, "Lee, Chun-Yi" <jlee@xxxxxxxx>, Theodore Ts o <tytso@xxxxxxx>, Stephan Mueller <smueller@xxxxxxxxxx>, Denis Kenzior <denkenz@xxxxxxxxx>, linux-pm@xxxxxxxxxxxxxxx, linux-crypto@xxxxxxxxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx, "Gu, Kookoo" <kookoo.gu@xxxxxxxxx>, "Zhang, Rui" <rui.zhang@xxxxxxxxx>
In-reply-to: <20180807073840.GA17894@chenyu-desktop>
References: <20180718202235.GA4132@amd> <20180718235851.GA22170@sandybridge-desktop> <20180719110149.GA4679@amd> <20180719132003.GA30981@sandybridge-desktop> <20180720102532.GA20284@amd> <1532346156.3057.11.camel@suse.com> <20180723162302.GA4503@sandybridge-desktop> <1532590246.7411.3.camel@suse.com> <20180806075754.GA12124@chenyu-desktop> <1533550820.15815.14.camel@suse.com> <20180807073840.GA17894@chenyu-desktop>

On Di, 2018-08-07 at 15:38 +0800, Yu Chen wrote:
> > As STD affects the whole machine it must require root rights.
> > So I cannot see how you can talk about a session belonging
> > to a user. Please explain.
> > 
> 
> The case is for physical access, not the 'user' in OS.

Well, yes, but Secure Boot does not guard against anybody
booting or halting the machine. It limits what you can
boot by a chain of trust.

I think you are trying to add a feature to Secure Boot.

	Regards
		Oliver

References:
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Pavel Machek
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Yu Chen
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Pavel Machek
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Yu Chen
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Pavel Machek
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Oliver Neukum
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Yu Chen
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Oliver Neukum
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Yu Chen
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Oliver Neukum
- Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
  - From: Yu Chen

Prev by Date: Re: [PATCH 0/2] crypto: arm64/ghash-ce - performance improvements
Next by Date: Re: [RFC PATCH 3/9] crypto: chacha20-generic - refactor to allow varying number of rounds
Previous by thread: Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
Next by thread: Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption
Index(es):
- Date
- Thread

[Index of Archives] [Kernel] [Gnu Classpath] [Gnu Crypto] [DM Crypt] [Netfilter] [Bugtraq]