> first I have to say I do not behold this as fundamental feature but > still I'm interested in technical views of this topic and arguments > for and against. > > Scenario: > - hibernation to encrypted swap > > If I understand it correctly bootstrapper would need to be extended to > be able to handle encrypted storage. And as OpenBSD has by random > key encrypted swap, this would presume to use softraid crypto > discipline for swap to be able to read the image and restore it... > > What are your thoughts about this? For example there's some physical > attack against Truecrypt bootloader which somehow confirms there's no > way to trust the bootloader itself ;) Some people proposed to Truecrypt > devs to use TPM but IIRC OpenBSD has refused TPM. > > This post is just discussion ;)
No kidding. Thoughts and words are free. Boring.
