secure data export

secure data export

Moish moish at mln.co.il
Sat Jun 25 23:28:25 IDT 2011


On 25/06/2011 21:06, Shachar Shemesh wrote:
> On 25/06/11 21:58, Orna Agmon Ben-Yehuda wrote:
>>
>> I am trying to prevent a specific action of various possible
>> (imaginary?) malware, which attempt to export data as hitchhikers on
>> data which is exported anyhow. I do not assume the malware is trying
>> to add itself to the CD, in addition to the data.
>>
>> The OCR idea is indeed nice. However, it is only good for small
>> amounts of data, or where the accuracy is not so important (English
>> texts). It is not so good for Hebrew or data (numbers), not to mention
>> binary data.
> Your suggestions assumed there was someone (human) able to go over the
> data and say "yes, this is what it is supposed to be". If this is large
> amounts of binary data, how do you plan to do that? You will need some
> computer that can be trusted. If you do have that, things are, already,
> much simpler.
>
> Shachar
>

It's more of a logical issue than anything else.
If the "secret" data is not easily recognizable, then the
whole system is at fault.
Close the doors and check every bit. There's no other way.
   OR
Follow the output, check who'll access it, where and how,
in short, create a honeypot.

-- 
Moish



More information about the Linux-il mailing list