[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Cfrg] how to guard against VM rollbacks

To: <cfrg at irtf.org>
Subject: Re: [Cfrg] how to guard against VM rollbacks
From: Paul Hoffman <paul.hoffman at vpnc.org>
Date: Thu, 11 Jan 2007 15:52:44 -0800
Cc:
In-reply-to: <07e801c7356a$aee30eb0$0300a8c0@weidai.com> <07d901c73568$1fd28630$0300a8c0@weidai.com>
List-help: <mailto:cfrg-request@ietf.org?subject=help>
List-id: Crypto Forum Research Group <cfrg.ietf.org>
List-post: <mailto:cfrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=unsubscribe>
References: <ec22d0e20701100620t37e77e70mda14d1c73930731@mail.gmail.com> <da7b3ce30701100950r1f038a28y74dd75f68f8e54cd@mail.gmail.com> <07e801c7356a$aee30eb0$0300a8c0@weidai.com> <E1H4wLi-0002mU-00@medusa01.cs.auckland.ac.nz> <07d901c73568$1fd28630$0300a8c0@weidai.com>

At 6:06 PM +0800 1/11/07, Wei Dai wrote:

I think as a writer of cryptographic software, instead of checking whether your software is running inside a VM, the safe thing to do would be to assume that it is, and take appropriate defensive measures.

At 6:24 PM +0800 1/11/07, Wei Dai wrote:

Hopefully OS vendors will cooperate with VM software writers to fix this problem.


These two responses seem to be at opposition with each other.

I think it is quite safe to assume that even if OS vendors cooperate with VM software writers in the future, all or nearly all OSs today will have the problem of the randomness state being saved by VM snapshots.

--Paul Hoffman, Director
--VPN Consortium

_______________________________________________
Cfrg mailing list
Cfrg at ietf.org
https://www1.ietf.org/mailman/listinfo/cfrg

Follow-Ups:
- Re: [Cfrg] how to guard against VM rollbacks
  - From: Wei Dai
- Re: [Cfrg] how to guard against VM rollbacks
  - From: Peter Gutmann

References:
- [Cfrg] how to guard against VM rollbacks
  - From: Wei Dai
- Re: [Cfrg] how to guard against VM rollbacks
  - From: Hal Finney
- Re: [Cfrg] how to guard against VM rollbacks
  - From: Wei Dai
- Re: [Cfrg] how to guard against VM rollbacks
  - From: Peter Gutmann
- Re: [Cfrg] how to guard against VM rollbacks
  - From: Wei Dai

Prev by Date: Re: [CFRG] how to guard against VM rollbacks
Next by Date: Re: [Cfrg] how to guard against VM rollbacks
Previous by thread: Re: [Cfrg] how to guard against VM rollbacks
Next by thread: Re: [Cfrg] how to guard against VM rollbacks
Index(es):
- Date
- Thread