MokSec - The Security Framework

Kalle Happonen kalle.happonen at iki.fi
Mon Jul 14 15:42:03 CEST 2008


arne anka wrote:
>> How would being root help somebody decrypt a filesystem?  Accessing an
>> encrypted filesystem should depend only on having the correct key.
>>     
>
> well, to be really usefull the fs should be mounted transparently (hacking  
> in the passphrase on every access seems utterly tedious with that tiny  
> keyboard -- and would probably add to the exposure risk).
depends on what you mean "on every access". If it's once per startup, I 
wouldn't think it's too much. How often do you reboot the phone?


Cheers,
Kalle




More information about the community mailing list