On 2022-12-22 09:17:18 +0100, Rainer Duffner wrote: > Am 22.12.2022 um 00:57 schrieb Benedict Holland < > [email protected]>: > > If someone has root, I don't know how they also don't have your > encryption keys. > > > They are not on the same box. They are in a HSM. A dedicated piece of > tamper-proof hardware that stores secrets (keys). > The Oracle-server needs to talk to the HSM to get the keys.
If the hacker has root access: What prevents them from talking to the
HSM?
hp
--
_ | Peter J. Holzer | Story must make more sense than reality.
|_|_) | |
| | | [email protected] | -- Charles Stross, "Creative writing
__/ | http://www.hjp.at/ | challenge!"
signature.asc
Description: PGP signature
