Re: Re: Hard disk Encryption

["Ali, Saqib" <docbook.xml () gmail com>]

Conventional Cryptography (AES, DES etc) does NOT provide
"Unconditional Security". With enough time and resources these cipher
can be cracked.

But the real threat is from using weak passwords and improper
management of recovery keys.

So look for a solution that locks out after certain number of
incorrect passwords.

Also a solution that requires you to maintain a backup of the
encryption keys may not be good enough. Look for one that uses key
escrow (e.g. Challenge/Response password recovery method etc).

saqib
http://www.full-disk-encryption.net

On 4/12/07, Balaji Prasad <bpmlist () sonic net> wrote:
> I wanted to start a discussion on strong and weak algorithms for disk
> encryption, their popularity and specific tradeoffs.
> Do we know of any test tools that can break an encrypted hard disk? What
> possible options does a hacker have if they have access to an encrypted
> disk.
>
>
> On Fri, 2007-03-09 at 01:42 +0000, amar2d4_s () yahoo com wrote:
> > Safeboot is good stuff.unless you are willing to play with lot of problems connected to recovery of data.
> >
> > Safebootdepends upon lot of otherstuff other than hard-disk.Risky stuff-thats where I put it.
> >
> > But, dunno about other hard-disk encryption material.
> >


--
Saqib Ali, CISSP, ISSAP
http://www.full-disk-encryption.net