Topic: I'm thinking of setting up encryption with a fail-deadly keyfile.
Anonymous A started this discussion 4 weeks ago #16,591
Cause: http://news.cnet.com/8301-31921_3-57364330-281/judge-americans-can-be-forced-to-decrypt-their-laptops/
Result: A cryptocontainer protected by a passphrase and a keyfile. The keyfile is stored online somewhere on a server of mine, and is automatically shredded if I don't authenticate myself every 48 hours (This authentication could be automated simply by pressing a button on my phone and entering a password). So, if I do ever end up in legal trouble all I have to do is not authenticate myself for 48 hours (Which should be plenty of time), and thus avoid being held indefinitely due to 'contempt'.
Thoughts? Opinions?
Result: A cryptocontainer protected by a passphrase and a keyfile. The keyfile is stored online somewhere on a server of mine, and is automatically shredded if I don't authenticate myself every 48 hours (This authentication could be automated simply by pressing a button on my phone and entering a password). So, if I do ever end up in legal trouble all I have to do is not authenticate myself for 48 hours (Which should be plenty of time), and thus avoid being held indefinitely due to 'contempt'.
Thoughts? Opinions?
Anonymous B joined in and replied with this 4 weeks ago, 11 minutes later[^] [v] #284,310
It sounds like it would be more likely to encounter a problem, fail to authenticate, and dump your data before you ever had to worry about someone decrypting it. Are you smuggling state secrets or something?
Anonymous A (OP) replied with this 4 weeks ago, 1 minute later, 13 minutes after the original post[^] [v] #284,312
@previous
It wouldn't be used for everything, just the sensitive things. Failing to authenticate shouldn't be a big problem in modern day society. I could even have it text me multiple times before anything happens to remind me.
It wouldn't be used for everything, just the sensitive things. Failing to authenticate shouldn't be a big problem in modern day society. I could even have it text me multiple times before anything happens to remind me.
Anonymous B replied with this 4 weeks ago, 1 hour later, 1 hour after the original post[^] [v] #284,323
@previous
Servers can go down, lose data, and aren't always backed up properly. How do you plan to guard against server problems, crashes, the possibility of the keyfile on the server being lost without a backup, or the possibility that the keyfile on the server won't just be seized or recovered from a backup if needed? I imagine that the odds of accidental data loss or having your data compromised probably outweigh the odds of it actually being useful in a real-life situation by quite a bit. If it makes you happy, it wouldn't hurt to try though. Let us know how it goes if you implement something that looks promising.
Servers can go down, lose data, and aren't always backed up properly. How do you plan to guard against server problems, crashes, the possibility of the keyfile on the server being lost without a backup, or the possibility that the keyfile on the server won't just be seized or recovered from a backup if needed? I imagine that the odds of accidental data loss or having your data compromised probably outweigh the odds of it actually being useful in a real-life situation by quite a bit. If it makes you happy, it wouldn't hurt to try though. Let us know how it goes if you implement something that looks promising.
(Edited 1 minute later.)
Anonymous A (OP) replied with this 4 weeks ago, 7 minutes later, 1 hour after the original post[^] [v] #284,326
@previous
For it to be reliable the server would have to be under my control with physical access, and there obviously shouldn't be any backups (or else the whole operation would be pointless). A safeguard against loss of data would be a good RAID setup. The other part of the idea is that the file would be erased before they know of the setup, so that it would be long gone once their seize the server.
A linux dedi in a reliable datacenter easily goes 10s of years without ever having any problems. Besides that, I'd only use if for data that would need to stay a secret. Everything else goes unencrypted or just encrypted by a passphrase.
All of this is still a hypothetical situation for now, of course.
For it to be reliable the server would have to be under my control with physical access, and there obviously shouldn't be any backups (or else the whole operation would be pointless). A safeguard against loss of data would be a good RAID setup. The other part of the idea is that the file would be erased before they know of the setup, so that it would be long gone once their seize the server.
A linux dedi in a reliable datacenter easily goes 10s of years without ever having any problems. Besides that, I'd only use if for data that would need to stay a secret. Everything else goes unencrypted or just encrypted by a passphrase.
All of this is still a hypothetical situation for now, of course.
(Edited 17 seconds later.)
Anonymous C joined in and replied with this 4 weeks ago, 1 hour later, 2 hours after the original post[^] [v] #284,360
ITT: we help pedobear hide his CP
Anonymous A (OP) replied with this 4 weeks ago, 9 minutes later, 2 hours after the original post[^] [v] #284,362
@previous
CP is disgusting
CP is disgusting
Nega !34Kas0OdzM joined in and replied with this 4 weeks ago, 7 minutes later, 3 hours after the original post[^] [v] #284,365
It's commonly called a Dead Man's Trigger.
Not that bad an idea, especially since it would be pretty hard to send anything while under investigation even if you wanted to.
Hidden volumes nigga, do you know them?
Not that bad an idea, especially since it would be pretty hard to send anything while under investigation even if you wanted to.
Hidden volumes nigga, do you know them?
Anonymous A (OP) replied with this 4 weeks ago, 7 minutes later, 3 hours after the original post[^] [v] #284,367
@previous
A $5 wrench would be enough for me to give up my hidden volume ;) I'd rather have it not be possible at all.
A $5 wrench would be enough for me to give up my hidden volume ;) I'd rather have it not be possible at all.
Nega !34Kas0OdzM replied with this 4 weeks ago, 25 minutes later, 3 hours after the original post[^] [v] #284,377
@previous
Not if you can convince them there's noth- yea, you're probably right.
Not if you can convince them there's noth- yea, you're probably right.
cat !LSD69pSotU joined in and replied with this 4 weeks ago, 28 minutes later, 4 hours after the original post[^] [v] #284,386
Anonymous A (OP) replied with this 4 weeks ago, 26 minutes later, 4 hours after the original post[^] [v] #284,392
Anonymous F joined in and replied with this 4 weeks ago, 2 hours later, 7 hours after the original post[^] [v] #284,413
> ...Americans' Fifth Amendment right to remain silent doesn't apply to their encryption passphrases."
LOL. American Judges don't know what "silence" means. Nice leadership retards.
LOL. American Judges don't know what "silence" means. Nice leadership retards.
(Edited 16 seconds later.)
cat !LSD69pSotU replied with this 4 weeks ago, 20 hours later, 1 day after the original post[^] [v] #284,722
Broseph !!fxnDb+Ve4 joined in and replied with this 4 weeks ago, 3 hours later, 1 day after the original post[^] [v] #284,763
What are you hiding that can get you into so much trouble?
Anonymous H joined in and replied with this 4 weeks ago, 4 minutes later, 1 day after the original post[^] [v] #284,764
@previous
Proof of the reptillian threat, I'd wager.
Proof of the reptillian threat, I'd wager.
☜DERRY☞ replied with this 3 weeks ago, 15 hours later, 1 day after the original post[^] [v] #284,867
@previous
cp
cp
Anonymous H replied with this 3 weeks ago, 1 hour later, 1 day after the original post[^] [v] #284,872
@previous
Or reptillian cp?
Or reptillian cp?
Anonymous I joined in and replied with this 3 weeks ago, 3 hours later, 2 days after the original post[^] [v] #284,888
Judge should be sacked
Anonymous B replied with this 3 weeks ago, 4 minutes later, 2 days after the original post[^] [v] #284,889
☜DERRY☞ replied with this 3 weeks ago, 8 hours later, 2 days after the original post[^] [v] #284,966
@284,872
dam lol
dam lol
Anonymous J joined in and replied with this 3 weeks ago, 7 minutes later, 2 days after the original post[^] [v] #284,970
ITT: nobody realizes this is a to4str thread
SQUARED :3 !L.....AlN. joined in and replied with this 3 weeks ago, 1 hour later, 2 days after the original post[^] [v] #284,989
henn joined in and replied with this 3 weeks ago, 20 minutes later, 2 days after the original post[^] [v] #284,992
Just say the passphrase was written on a piece of paper and/or too long to remember.
(Edited 20 seconds later.)
Anonymous A (OP) replied with this 3 weeks ago, 6 minutes later, 2 days after the original post[^] [v] #284,995
@previous
And what happened to the piece of paper?
And what happened to the piece of paper?
Anonymous H replied with this 3 weeks ago, 1 minute later, 2 days after the original post[^] [v] #284,998
@previous
Reptillian spies.
Reptillian spies.
henn replied with this 3 weeks ago, 2 minutes later, 2 days after the original post[^] [v] #285,000
@284,995
It's in the place where the computers were confiscated by the police.
It's in the place where the computers were confiscated by the police.
Anonymous A (OP) replied with this 3 weeks ago, 2 minutes later, 2 days after the original post[^] [v] #285,002
@previous
that's not a good idea, is it?
that's not a good idea, is it?
henn replied with this 3 weeks ago, 2 minutes later, 2 days after the original post[^] [v] #285,003
@previous
Sure it is. Talk it over with your lawyer.
Sure it is. Talk it over with your lawyer.
Anonymous M joined in and replied with this 3 weeks ago, 14 hours later, 3 days after the original post[^] [v] #285,101
@previous
so.... they can't prove that you know it. and you're also attempting to cooperate?
so.... they can't prove that you know it. and you're also attempting to cooperate?