RIPE discovers that you can skip the HSMs and just use Linux FDE if you define away the problem HSMs solve.pic.twitter.com/LCiqpW3LuA
Show this thread
The next best thing is indeed a maxium locked down and trimmed network box that only expose functions that:Generate priv/pub key-return pub key and priv key identifier,generate symmetric key- return identifier, use priv/symmetric key on input return result(PKCS11).
-
-
The only difference is that functionality for exporting sensitive keys is supposed to not exist in the HSM hardware- but that is bullshit anyway..... for the right amount of $ IBM/SAFENET/WHATEVER will send an consultant with a special firmware upgrade that will export anything!
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
and that is anyway only relevant if you configure the HSM to use correct attributes by default, marking the keys as "sensitive" and disable functionality for using sensitive keys as input for key derivation algos(very rarely happens)
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
ohh and the HSM is only worth its price if you remember to segment the administrative and the usage ip addressess into seperate networks- otherwise compromise of the usage subnet will make compromise of the HSM quite easy in practice...
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
That’s not what RIPE NCC’s key server is. It’s a commodity Linux box running Knot DNS, a giant blob of C code with its own custom DNSSEC implementation.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.