Hello Andrew, imagine you have many files with CID data (customer identified data) and you must protect them after the EU data protection law.
Now you must clean all data of the customer x. And this should be secure. A simple trick might be to use encryption. All files get encrypted with a own key. Instead of wiping the files, you can can simple destroy the keys (in a very secure way). This is simple and fast. But, it will be only valid, if and olny if the encryption will hold and really is safe. Ok, the only way to do this will be the one time pad, which is absolutely secure (as long the length is long enough to prevent the guessing). But for practical reasons, this might be take big disk spaces. For a compromise you can combine two ciphers, so if one will work and the other will get problems today or tomorrow, this "smart wiping" of files, will work. And by the way, if qubes os will have it's own real non-deterministic random generator, you can use the OTP to secure the passwords itself, which have a very limited disk space, so this will be feasible. Kind Regards -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/97f34092-8565-490a-9d73-6310bd6dc791%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
