Yes, there are various long term ideas for extra layers of encryption on the datastore. We could, for example, store the datastore, temporary files and client cache in the same store:
Let E be the decryption key, F be the fetch key. For a datastore fetch: E = H (key + S + 1), F = H(E) where S is a salt value (in the node file) For a datacache fetch: E = H (key + S + 2), F = H(E) For a client-cache fetch: E = H (key + X), F = H(E) where X is a transient key created on startup For a temporary file, we would have a chain of blocks with randomly generated keys. We would then look up blocks in the database by F, so the database need not contain any useful information. This would significantly slow down extracting useful information from a confiscated datastore, although of course it's always possible. On Sun, Aug 20, 2006 at 11:36:03AM +0100, Michael Rogers wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Matthew Toseland wrote: > > - We keep a true client-cache. This is a datastore. Each block is > > encrypted by, and keyed by, randomly generated keys. > > In the long term, might it be worth implementing a simple encrypted > filesystem, stored inside a single fixed-size file? The encrypted > filesystem could be used for the datastore, cache, client-cache, config > files, etc. Unused blocks would be indistinguishable from used blocks > because each block would be encrypted with a key derived from the block > number and a master key, and the master key would be derived from a > passphrase each time the node started up. This would make it harder to > examine the store of a captured node, because you'd have to capture it > while it was running. Just trying to save everyone some money on > thermite. ;-) > > This could probably be implemented as a separate library... any takers? :-) > > Cheers, > Michael > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.5 (GNU/Linux) > > iD8DBQFE6DsTyua14OQlJ3sRApi3AJ4pF2W5LzWFX/dm528OTTy8M8NjoACdEfK3 > yO+1qpaWd6P0Qvf7bC7epJQ= > =t4GU > -----END PGP SIGNATURE----- > _______________________________________________ > Tech mailing list > Tech at freenetproject.org > http://emu.freenetproject.org/cgi-bin/mailman/listinfo/tech > -- Matthew J Toseland - toad at amphibian.dyndns.org Freenet Project Official Codemonkey - http://freenetproject.org/ ICTHUS - Nothing is impossible. Our Boss says so. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 189 bytes Desc: Digital signature URL: <https://emu.freenetproject.org/pipermail/tech/attachments/20060821/f9af6d6f/attachment.pgp>
