On Sun, 10 Apr 2016, Matt Schwartz <[email protected]> wrote: > I really like the bioctl full disk encryption feature. I would love to see > it extended to support multiple users/passkeys. I once worked with a > commercial full disk encryption product that allowed this and could even be > managed over a network. Coming up with a solution to manage encryption keys > over a network is trivial but I'd love to see the full disk encryption > extended to support multiple users with individual passkeys. > > Thanks for listening!
This is pretty much completely pointless. FDE is supposed to protect your data when an adversary gains physical access to the disks. Physical access to the machine = root access to the OS. If you suspect someone could've tampered with the OS/bootloader (e.g. log the passphrase in cleartext), you better carry the bootloader on a USB stick and keep it under your pillow. If you trust your local users not to screw with the machine, just give them the damn passphrase. How many users share physical access to that box? 2? 5? 150? Perhaps too many? How often does a member of the staff leave the company? Is changing the passphrase every 6-12 months such a bother? For any networked access, the traditional unix permission model does the job, and having or not having FDE wouldn't make a slightest difference. One user can't see or modify the files of another. K.
