Hello, first I have to say I do not behold this as fundamental feature but still I'm interested in technical views of this topic and arguments for and against.
Scenario: - hibernation to encrypted swap If I understand it correctly bootstrapper would need to be extended to be able to handle encrypted storage. And as OpenBSD has by random key encrypted swap, this would presume to use softraid crypto discipline for swap to be able to read the image and restore it... What are your thoughts about this? For example there's some physical attack against Truecrypt bootloader which somehow confirms there's no way to trust the bootloader itself ;) Some people proposed to Truecrypt devs to use TPM but IIRC OpenBSD has refused TPM. This post is just discussion ;) jirib
