secure data export
Elazar Leibovich
elazarl at gmail.com
Fri Jun 24 09:37:26 IDT 2011
2011/6/24 Orna Agmon Ben-Yehuda <ladypine at gmail.com>
> Hello all security experts,
>
I'm not a security expert, however you raised my curiosity.
>
> I would like to export data from a machine on a business's internal network
> on a safe media, such that only the files I want exported are on the media.
>
[snip]
The basic things that I don't understand is, what is the basic thing you can
trust.
Do you have a:
1) List of files on a computer you know who they are (say you generated
their hash when you knew they're OK), and you wish to make sure no other
file will sneak?
The basic problem here is, finding a computer you can trust in a
hostile environment. Once you have a computer you completely trust - copying
only those files in the list is trivial.
2) An oracle (usually the information security officer) who can, given a
file, verify it is not secret.
In that case the basic problem is given a non-secret file, verify that no
other information is included with it via stenography.
Or is it some other scenario that I'm missing?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.cs.huji.ac.il/pipermail/linux-il/attachments/20110624/27a12617/attachment.html>
More information about the Linux-il
mailing list