On Sun, Mar 12, 2017 at 11:01 PM, Jean-Philippe Ouellet <[email protected]> wrote: > If the reason you are trying to put things there is actually to resist > local forensics (by only storing vm contents in memory), then a better > solution would be to encrypt the copy-on-write deltas with an > ephemeral single-boot key which is forgotten on shutdown.
Of course I mean a different key per boot of each AppVM, not of the host. -- You received this message because you are subscribed to the Google Groups "qubes-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-devel/CABQWM_AQbT4JTsKNjQyyX_e%3D3Lr45b6cGBr%3Dehbope39VWNrKg%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
