[Cryptech Core] auto-zeroise and complex use cases

Peter Stuge peter at stuge.se
Thu Dec 13 13:17:02 UTC 2018

Previous message (by thread): [Cryptech Core] auto-zeroise and complex use cases
Next message (by thread): [Cryptech Core] auto-zeroise and complex use cases
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Joachim Strömbergson wrote:
> So, Rob, can you explain what problems you saw and for which use cases?

Please do.

> One possibility is to allow SW to enable/disable the auto-zeroise
> functionality. But it sounds like a good way to bypass security
> functionality. Or would this be ok?

I don't think that's OK. If software wants to keep the key alive then
it can simply poll status as you wrote. Even on battery a wakeup
every 10 s is no big deal.

//Peter

Previous message (by thread): [Cryptech Core] auto-zeroise and complex use cases
Next message (by thread): [Cryptech Core] auto-zeroise and complex use cases
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Core mailing list