BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Discuss] Full disk encryption and backups

Subject: [Discuss] Full disk encryption and backups
From: richard.pieri at gmail.com (Richard Pieri)
Date: Wed, 04 Jan 2012 11:11:10 -0500
In-reply-to: <4F03C831.9050408@vl.com>
References: <4F025206.5000905@vl.com> <18C7E088-AF0C-4509-B312-5D3E1754CE98@gmail.com> <4F037D0E.40609@vl.com> <EDF41843-A123-4B0A-8009-D46D81471A12@gmail.com> <4F03C831.9050408@vl.com>

On 1/3/2012 10:32 PM, Tom Metro wrote:
> Ummm...yeah. You do realize that in order to use your data you need to
> decrypt it, right? :-)

Yeah, but that data remains local within hopefully protected memory 
areas.  Bacukps usually run to external storage of some sort, be they 
flash drives or NAS or what have you.  Take the Firewire or USB link 
bewteen a Macintosh and its Time Machine disk.  This link is completely 
unauthenticated and unsecured.  An attacker could tap that connection 
without any difficulty.

There are ways to deal with this but they add complexity to the backup 
system.  The more complex you make the backup system, the more difficult 
you make it to use.

-- 
Rich P.

References:
- [Discuss] Full disk encryption
  - From: tmetro-blu at vl.com (Tom Metro)
- [Discuss] Full disk encryption
  - From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] Full disk encryption and backups
  - From: tmetro-blu at vl.com (Tom Metro)
- [Discuss] Full disk encryption and backups
  - From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] Full disk encryption and backups
  - From: tmetro-blu at vl.com (Tom Metro)

Prev by Date: [Discuss] box.net
Next by Date: [Discuss] Full disk encryption
Previous by thread: [Discuss] Full disk encryption and backups
Next by thread: [Discuss] Full disk encryption
Index(es):
- Date
- Thread


BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Boston Linux & Unix / webmaster@blu.org