On 03/19/2013 11:18 PM, William Kenworthy wrote: > On 20/03/13 10:58, Michael Mol wrote: >> Does anybody know of time lock flash drives? >> >> The scenario I'm looking at is to have a drive that's only accessible >> for a certain amount of time after being powered on. It would hold >> crypto keys in a server context. >> > Something like this? > > http://www.tomshardware.com/reviews/USB-Flash-Drives,2003-6.html > > It does sound like you want a "dongle" like autocad used (?) to use. > > I think the real solution though would be some kind of check with a > remote site that would expire the keys
Not so much. The idea would be that you could power cycle the device to get access to it again. The device would be read for the keys at system bootup, but then would shut itself off after a few minutes to prevent the keys from being read from disk. (There's still the risk of them being read from the memory of the process using them, but that's slightly more difficult, and security is all about raising the bar.)
signature.asc
Description: OpenPGP digital signature
