Re: RSA's SecurPC not-so-"Secur"

Andy Brown (Andy.Brown@nexor.co.uk)
Tue, 12 May 1998 12:26:18 +0100

• Next message: Sunder: "Re: RSA's SecurPC not-so-"Secur""
• Previous message: W. J. La Cholter: "RE: RSA's SecurPC not-so-"Secur""
• Maybe in reply to: staym@accessdata.com: "RSA's SecurPC not-so-"Secur""
• Next in thread: Sunder: "Re: RSA's SecurPC not-so-"Secur""
• Reply: Sunder: "Re: RSA's SecurPC not-so-"Secur""

Peter Gutmann wrote:

> [...]
> I covered the
> page locking problem briefly in my 1998 Usenix security symposium paper on
> secure random number generation, a more reliable way to try to avoid paging is
> to have a higher-priority background thread which touches the page
> constantly. However even in this case with NT's apparently nondeterministic
> paging behaviour it's not really possible to guarantee it won't be swapped.

Instead of trying to avoid paging, which seems to be impossible across Unix/NT
platforms, why not restrict it to a known secure area through the use of a memory
mapped file. i.e. set restrictive permissions on your directory and use a mapped
file within it to hold all sensitive data. At least then when you wipe it you'll know
for sure your password's never been in swap.

Regards,

- Andy
 

• Next message: Sunder: "Re: RSA's SecurPC not-so-"Secur""
• Previous message: W. J. La Cholter: "RE: RSA's SecurPC not-so-"Secur""
• Maybe in reply to: staym@accessdata.com: "RSA's SecurPC not-so-"Secur""
• Next in thread: Sunder: "Re: RSA's SecurPC not-so-"Secur""
• Reply: Sunder: "Re: RSA's SecurPC not-so-"Secur""