Video Converter
Audio Converter
Image Converter
PDF Converter
File Compressor
close lid to encrypt

Close lid to encrypt Hard disk encryption in Linux suspend mode Tim - PowerPoint PPT Presentation

Apr 03, 2024 •224 likes •398 views

Close lid to encrypt Hard disk encryption in Linux suspend mode Tim Dittler FOSDEM, 02.02.2020 Whats Close lid to encrypt? Project by Jonas Meurer and me Freelancing systems engineers living in Germany Full-disk encryption

  1. Close lid to encrypt Hard disk encryption in Linux suspend mode Tim Dittler FOSDEM, 02.02.2020

  2. What‘s „Close lid to encrypt“? ● Project by Jonas Meurer and me – Freelancing systems engineers living in Germany ● Full-disk encryption in suspend mode ● For Debian and derivatives 2

  3. Why is is useful? ● Full-disk encryption protects your data only at rest powerofg working suspend working powerofg powerofg working suspend working powerofg 3

  4. Why is it diffjcult? ● Well, we‘re locking away your running operating system! ● Race conditions – Prevent access to locked fjlesystems – Otherwise kernel will wait forever ● Memory management – Swap on harddrive is encrypted 4

  5. How is it implemented? systemd-suspend.service cryptsetup-suspend-wrapper 5

  6. How is it implemented? systemd-suspend.service cryptsetup-suspend-wrapper build initramfs; freeze cgroups; chroot cryptsetup-suspend.c 6

  7. How is it implemented? systemd-suspend.service cryptsetup-suspend-wrapper build initramfs; freeze cgroups; chroot cryptsetup-suspend.c mlock; /sys/power/sync_on_suspend = 0; sync; luks-suspend; suspend kernel 7

  8. /sys/power/sync_on_suspend ??? 8

  9. How is it implemented? systemd-suspend.service (unlock session) clean up; unfreeze cgroups; cryptsetup-suspend-wrapper build initramfs; freeze cgroups; unlock luks devices chroot cryptsetup-suspend.c mlock; /sys/power/sync_on_suspend = 0; sync; resume luks-suspend; suspend kernel 9

  10. Demo 10

  11. Demo 11

  12. What‘s next? ● More testing ● Merge upstream – Debian Bullseye: „apt install cryptsetup-suspend“ ● How to handle situations with low available memory? ● There are more secrets in your memory than LUKS keys 12

  13. Thanks ● Cryptsetup authors – Jana Saout <jana@saout.de> – Clemens Fruhwirth <clemens@endorphin.org> – Milan Broz <gmazyland@gmail.com> – Ondrej Kozina <okozina@redhat.com> ● Cryptsetup Debian maintainers – Guilhem Moulin <guilhem@debian.org> – Jonas Meurer <jonas@freesources.org> 13 –

  14. Thanks ● Inspiration – Vianney le Clément de Saint-Marcq <vleclement@gmail.com> ● https://github.com/vianney/arch-luks-suspend – Jen Bowen <jen@nailfarmer.com> ● https://github.com/nailfarmer/debian-luks-suspend/ 14

  15. Thanks 15

  16. https://salsa.debian.org/ mejo/cryptsetup-suspend/ tim.dittler@systemli.org 16

Recommend

(LID) General LID Principles LID is an ecologically LID is an ecologically- -friendly

(LID) General LID Principles LID is an ecologically LID is an ecologically- -friendly

L OW I MPACT D EVELOPMENT (LID) General LID Principles LID is an ecologically LID is an ecologically- -friendly approach to site friendly approach to site development and stormwater management that development and stormwater

215 views • 18 slides
LIDs WHAT IS A LID? WHAT IS A LID? LID LO LOCA CAL IM IMPRO PROVEM VEMENT ENT DIS

LIDs WHAT IS A LID? WHAT IS A LID? LID LO LOCA CAL IM IMPRO PROVEM VEMENT ENT DIS

LIDs WHAT IS A LID? WHAT IS A LID? LID LO LOCA CAL IM IMPRO PROVEM VEMENT ENT DIS DISTRI TRICT CT WH WHY Y A L A LID ID Provides a relatively easy way to finance and construct improvements in a subdivision Insures

280 views • 24 slides
LID Projects LID Projects Low Impact Design Dave Lagorio LEED AP 1 LID -Definition One of

LID Projects LID Projects Low Impact Design Dave Lagorio LEED AP 1 LID -Definition One of

Fall 2009 Got SWPPP? Storm Water Workshop LID Projects LID Projects Low Impact Design Dave Lagorio LEED AP 1 LID -Definition One of LID's primary goals is to reduce runoff volume by infiltrating rainfall water to groundwater,

239 views • 8 slides
LID &amp; MS4 Stormwater Permit Nexus Presented by: Eileen E. Dunn, ADEQ LID Basics and Beyond:

LID &amp; MS4 Stormwater Permit Nexus Presented by: Eileen E. Dunn, ADEQ LID Basics and Beyond:

LID &amp; MS4 Stormwater Permit Nexus Presented by: Eileen E. Dunn, ADEQ LID Basics and Beyond: Low Impact Development in the Arid Southwest Glendale Public Library February 5, 2013 1 The Plan LID What: Introduction/Terms LID Why: Arid

426 views • 24 slides
What is Flexsil-lid? Flexsil-lid is an Australian invention designed to reduce the use and

What is Flexsil-lid? Flexsil-lid is an Australian invention designed to reduce the use and

What is Flexsil-lid? Flexsil-lid is an Australian invention designed to reduce the use and waste of Plastic Film Wrap and Foil on Gastronorms &amp; Steam Pans in commercial kitchens Flexsil-lid is a unique product made from food grade

107 views • 9 slides
Applying LID Practices in Arizonas MS4 permit Marie Light LID Workshop Pima County Regional

Applying LID Practices in Arizonas MS4 permit Marie Light LID Workshop Pima County Regional

MS4 Applying LID Practices in Arizonas MS4 permit Marie Light LID Workshop Pima County Regional Flood Control District March 15, 2011 8:00a 4:00p Tucson, AZ MS4 Applying LID in MS4 permits Regulatory environment Arizonas

315 views • 15 slides
Steady Flow: Lid-Driven Cavity Flow This tutorial demonstrates the performance of STAR-CCM+ in

Steady Flow: Lid-Driven Cavity Flow This tutorial demonstrates the performance of STAR-CCM+ in

STAR-CCM+ User Guide Steady Flow: Lid-Driven Cavity Flow 2 Steady Flow: Lid-Driven Cavity Flow This tutorial demonstrates the performance of STAR-CCM+ in solving a traditional square lid-driven cavity flow. The problem geometry consists of a

345 views • 18 slides
Thermal Socket Lid &amp; Control Lid &amp; Control Systems IP, Jan 2012 1 High Performance

Thermal Socket Lid &amp; Control Lid &amp; Control Systems IP, Jan 2012 1 High Performance

High Performance Sockets &amp; Adapters 1-800-404-0204 info@ironwoodelectronics.com Thermal Socket Lid &amp; Control Lid &amp; Control Systems IP, Jan 2012 1 High Performance Sockets &amp; Adapters 1-800-404-0204

573 views • 12 slides
Making LID the preferred and commonly-used approach to site development February 3, 2016 City

Making LID the preferred and commonly-used approach to site development February 3, 2016 City

Making LID the preferred and commonly-used approach to site development February 3, 2016 City of Olympia | Capital o f Washing to n State An Overview of LID for Olympia 1. Olympias LID code revision process 2. What is being proposed for City

639 views • 24 slides
Changing the Standards f D for Development l Why LID ? Why LID ? Two new standards are

Changing the Standards f D for Development l Why LID ? Why LID ? Two new standards are

Low Impact ow Impact Development &amp; Hydromodification y Changing the Standards f D for Development l Why LID ? Why LID ? Two new standards are changing the face of development Low Impact Development Low Impact Development

591 views • 35 slides
Several possibilities for combination: So far: had cryptographic algorithms to achieve

Several possibilities for combination: So far: had cryptographic algorithms to achieve

Several possibilities for combination: So far: had cryptographic algorithms to achieve Encrypt-then MAC: encrypt message, then compute MAC of Privacy: use encryption ciphertext. Integrity: use MAC MAC-then-encrypt: First compute MAC, and then

207 views • 3 slides
How To Open And Close A Ted Talk 11 Proven Techniques To Open And Close Any Page 1/114 1042968

How To Open And Close A Ted Talk 11 Proven Techniques To Open And Close Any Page 1/114 1042968

How To Open And Close A Ted Talk 11 Proven Techniques To Open And Close Any Speech Or Presentation With A Bonus Analysis Of A Full Ted Talk.pdf How To Open And Close A Ted Talk 11 Proven Techniques To Open And Close Any Page 1/114 1042968 How

1.27k views • 114 slides
FBC LID 7 Update NTRCA Annual Meeting January 21, 2019 Directors Jim Grotte, Cindy Picazo,

FBC LID 7 Update NTRCA Annual Meeting January 21, 2019 Directors Jim Grotte, Cindy Picazo,

FBC LID 7 Update NTRCA Annual Meeting January 21, 2019 Directors Jim Grotte, Cindy Picazo, Gerald Kazmierczak, Jeff Hanig &amp; Michael Pincomb FBC LID 7 Projects Brazos River Erosion Expanded Pump Station Expanded Internal

548 views • 7 slides
Brad Duckett Dalton Area Woodturners Guild November 2019 Design The Bowl The Lid

Brad Duckett Dalton Area Woodturners Guild November 2019 Design The Bowl The Lid

Brad Duckett Dalton Area Woodturners Guild November 2019 Design The Bowl The Lid The Knob Embellishments Design Elements Shape of bowl Shelf Face of lid Knob Foot Embellishments: Beading,

462 views • 20 slides
Low Impact Development (LID) on Multi-Residential Properties By: Credit Valley Conservation (CVC)

Low Impact Development (LID) on Multi-Residential Properties By: Credit Valley Conservation (CVC)

Low Impact Development (LID) on Multi-Residential Properties By: Credit Valley Conservation (CVC) Presentation Outline What is Low Impact Development (LID)? Grey to Green Guide 8 Step Process Case Studies Greening

860 views • 30 slides
The Evolution Clean Water to LID San Antonio TX March 15, 2011 John Malueg, PE

The Evolution Clean Water to LID San Antonio TX March 15, 2011 John Malueg, PE

LID Practices For Stormwater in our Semi-Arid Environment A Regional Dialogue The Evolution Clean Water to LID San Antonio TX March 15, 2011 John Malueg, PE John.Malueg@Stantec.com USEPA Environmental Protection Agency Mission - To

418 views • 40 slides
Mobiflage: Deniable Storage Encryption for Mobile Devices Adam Skillen and Mohammad Mannan a

Mobiflage: Deniable Storage Encryption for Mobile Devices Adam Skillen and Mohammad Mannan a

Mobiflage: Deniable Storage Encryption for Mobile Devices Adam Skillen and Mohammad Mannan a skil@ciise.concordia.ca Concordia Institute for Information Systems Engineering Concordia University Montr eal, Canada NDSS 2013, San Diego, CA

488 views • 23 slides
Janet Carroll RN BSN, LMT, CLYL, CLYT The Laughter Nurse janet@janetcarrollrn.com

Janet Carroll RN BSN, LMT, CLYL, CLYT The Laughter Nurse janet@janetcarrollrn.com

Janet Carroll RN BSN, LMT, CLYL, CLYT The Laughter Nurse janet@janetcarrollrn.com www.janetcarrollrn.com 832-216-3713 ________________________________________

217 views • 3 slides
Clean Slate: Create a Complete Dashboard Zachary Sexton of Your Work Announcements Im an

Clean Slate: Create a Complete Dashboard Zachary Sexton of Your Work Announcements Im an

Clean Slate: Create a Complete Dashboard Zachary Sexton of Your Work Announcements Im an uncle! Well be covering Visualizing next week Optimizing and Maintaining will be on week 4 Ill be staying on for a Q&amp;A at the

1.28k views • 108 slides
A knowledge based interface for distributed biological databases Paolo Bresciani and Paolo

A knowledge based interface for distributed biological databases Paolo Bresciani and Paolo

A knowledge based interface for distributed biological databases Paolo Bresciani and Paolo Fontana and Paolo Busetta brescian,pfontana,busetta @itc.it. ( )ITC-irst (TRENTO) and ( )IASMAA (San Michele a.A.)

857 views • 57 slides
Central Valley Environmental Detox --A New Beginning-- Week 2 1 Review Week 1 Days 1 7

Central Valley Environmental Detox --A New Beginning-- Week 2 1 Review Week 1 Days 1 7

Central Valley Environmental Detox --A New Beginning-- Week 2 1 Review Week 1 Days 1 7 Days 1 7 UC 2 times/day Day 8 Day 9 Days 10, 11, &amp; 12 Day 13 Day 14 Days 16-21 UC 2 times/day UC 3 times/day UC 4

364 views • 33 slides
Verschlsselte Dateisysteme unter Linux Michael Gebetsroither http://einsteinmg.dyndns.org

Verschlsselte Dateisysteme unter Linux Michael Gebetsroither http://einsteinmg.dyndns.org

Verschlsselte Dateisysteme unter Linux Michael Gebetsroither http://einsteinmg.dyndns.org gebi@sbox.tugraz.at Einteilung Theorie Kurze Einfhrung Verschiedene Mglichkeiten der Verschlsselung Unsicherheitsfaktoren und wie

269 views • 24 slides
PHYSICS SIMULATION Rigid body simulator introduction Continuum simulation The Documents

PHYSICS SIMULATION Rigid body simulator introduction Continuum simulation The Documents

() PHYSICS SIMULATION Rigid body simulator introduction Continuum simulation The Documents http://haselab.net/class/vr userbasic passwdprog asela aselab Introduction for Multi-rigid body physics simulator

604 views • 33 slides
E XPRESSIVITY L IMITATIONS OF OWL 1 At least one tree-shaped model for each consistent OWL ontology

E XPRESSIVITY L IMITATIONS OF OWL 1 At least one tree-shaped model for each consistent OWL ontology

E XTENDING L OGIC P ROGRAMMING FOR L IFE S CIENCES A PPLICATIONS Despoina Magka Department of Computer Science, University of Oxford November 16, 2012 B IOINFORMATICS AND S EMANTIC T ECHNOLOGIES Life sciences data deluge 1 B IOINFORMATICS AND S

944 views • 72 slides

More recommend

Explore More Topics

Stay informed with curated content and fresh updates.

animals pets art culture automotive transportation business finance computer internet construction architecture education-career electronics communication

Logo Sambuz

Unleash a World of Digital Possibilities—Browse, Share, and Explore Content Without Boundaries

Useful Links

About Us Privacy Services FAQ's Contact

Newsletter

Stay Informed & Inspired—Subscribe for the Latest Updates, Tips, and Exclusive Content Directly to Your Inbox.

Mail Us

mail@sambuz.com

2026 SAMBUZ, All right reserved.