ONJava.com -- The Independent Source for Enterprise Java
oreilly.comSafari Books Online.Conferences.

advertisement

AddThis Social Bookmark Button
Article:
  An Unencrypted Look at FileVault
Subject:   Vault and the swapfile
Date:   2003-12-21 14:15:01
From:   anonymous2
Response to: Vault and the swapfile

what do you mean, 'automatically alters it on logout'?


to me, if something is written to the disk in the clear, ever, you're hosed. when they break out the scanning tunneling electron microscope they're going to find the data.


what good is strong cryptography if your data gets written in the clear in a swap file??


an easy fix is for apple to provide the option of encrypting the swap files too. Most of my linux machines use encrypted swap partitions, using the same software I use in linux to encrypt my /home partition.


To me, until they add encrypted swap, FileVault is pretty much useless, and is only good for wasting CPU time. I suppose it makes it a bit more difficult to get your data, but a serious attacker is going to go straight for the swap files.


1 to 1 of 1
  1. FJ de Kermadec photo Vault and the swapfile
    2003-12-21 14:23:13  FJ de Kermadec | O'Reilly Blogger [View]

1 to 1 of 1