Re^3: Can I do secure memory management in Perl scripts for cryptographic applications?

(encrypting swap is so damned easy these days...)

and then you have that encryption key somewhere in RAM...

--shmem

_($_=" "x(1<<5)."?\n".q·/)Oo.  G°\        /
                              /\_¯/(q    /
----------------------------  \__(m.====·.(_("always off the crowd"))."·
");sub _{s./.($e="'Itrs `mnsgdq Gdbj O`qkdq")=~y/"-y/#-z/;$e.e && print}

Comment on Re^3: Can I do secure memory management in Perl scripts for cryptographic applications?

Replies are listed 'Best First'.
Re^4: Can I do secure memory management in Perl scripts for cryptographic applications? by radiantmatrix (Parson) on Jan 23, 2007 at 15:22 UTC
Yeah, it's enough to make you scream, isn't it? :-) At least the key for encrypted swap is somewhat protected (you pretty much have to be root to get at it, assuming there aren't gaping bugs in the swap or encryption layer). There's a point at which paranoia has just got to stop, and one needs to say "secure enough", I guess. <–radiant.matrix–> Ramblings and references The Code that can be seen is not the true Code I haven't found a problem yet that can't be solved by a well-placed trebuchet	[reply]

Replies are listed 'Best First'.

Re^4: Can I do secure memory management in Perl scripts for cryptographic applications?
by radiantmatrix (Parson) on Jan 23, 2007 at 15:22 UTC

Yeah, it's enough to make you scream, isn't it? :-) At least the key for encrypted swap is somewhat protected (you pretty much have to be root to get at it, assuming there aren't gaping bugs in the swap or encryption layer). There's a point at which paranoia has just got to stop, and one needs to say "secure enough", I guess.

<–radiant.matrix–>
Ramblings and references
The Code that can be seen is not the true Code
I haven't found a problem yet that can't be solved by a well-placed trebuchet

[reply]