Die meisten von euch werden die luks Verschlüsselung einsetzen.
Frage :
Was bringt Verschlüsselung eigentlich, wenn auf SSD Platten geheime Speicherareale existieren, in denen Dumps der verschlüsselten Daten vorgenommen werden?
Man lese sich mal die manpage zu wipe durch :
Selbst wenn man Partitionen verschlüsselt bringt einem das reichlich wenig wenn die vom Hersteller vorhandenen "Geheimareale" davon nicht tangiert werden.Be aware that harddisks are quite intelligent beasts those days. They transparently remap defective blocks. This means that the disk can keep an
albeit corrupted (maybe slightly) but inaccessible and unerasable copy of some of your data. Modern disks are said to have about 100% transparent
remapping capacity. You can have a look at recent discussions on Slashdot.
I hereby speculate that harddisks can use the spare remapping area to secretly make copies of your data. Rising totalitarianism makes this almost
a certitude. It is quite straightforward to implement some simple filtering schemes that would copy potentially interesting data. Better, a hard‐
disk can probably detect that a given file is being wiped, and silently make a copy of it, while wiping the original as instructed.
Recovering such data is probably easily done with secret IDE/SCSI commands. My guess is that there are agreements between harddisk manufacturers
and government agencies. Well-funded mafia hackers should then be able to find those secret commands too.
Of course this shifts the trust to the computing system, the CPU, and so on. I guess there are also "traps" in the CPU and, in fact, in every suf‐
ficiently advanced mass-marketed chip. Wealthy nations can find those. Therefore these are mainly used for criminal investigation and "control of
public dissent".
People should better think of their computing devices as facilities lended by the DHS.
So wie ich das sehe, sind diese ganzen Security übungen doch absolut für die Katz.