| 1 |
On Mon, Mar 21, 2022 at 12:17 PM Laurence Perkins <lperkins@×××××××.net> wrote: |
| 2 |
> |
| 3 |
> There was the ORWL project a few years ago. Self-encrypting SSD drive with a TPM that would unlock it only in the presence of an encrypted RFID tag plus tapping in a code on the keypad, with all the sensitive bits wrapped in an active mesh system that would destroy the data if it detected any tampering. |
| 4 |
|
| 5 |
While I can see this being useful if for some reason you don't have |
| 6 |
support for encryption on the software side, something like this seems |
| 7 |
like it wouldn't actually solve the unattended boot problem, since you |
| 8 |
have to enter a PIN. If you don't require the PIN and leave the RFID |
| 9 |
tag sitting next to the drive all the time, then anybody can walk in |
| 10 |
and take the drive and the tag and then read the data off the drive |
| 11 |
bypassing the OS. So it offers at best the same protection as a LUKS |
| 12 |
passphrase entered at boot, and at worst no protection at all. It |
| 13 |
would have the advantage that you wouldn't be able to attack the |
| 14 |
passphrase itself as no doubt the PIN only offers limited attempts and |
| 15 |
would be very difficult to bypass. |
| 16 |
|
| 17 |
The advantage of the TPM in the computer is that you can do unattended |
| 18 |
verified boot, so the disk can only be decrypted if the OS boots |
| 19 |
normally without tampering. Obviously you're still open to OS |
| 20 |
vulnerabilities, but the drive itself cannot be accessed except via |
| 21 |
the OS. The TPM chip can actually supervise the boot process. |
| 22 |
|
| 23 |
Still an interesting product though. I could see it being useful if |
| 24 |
you had to run some specific OS that doesn't support disk encryption |
| 25 |
natively. |
| 26 |
|
| 27 |
-- |
| 28 |
Rich |
Archives