Collaborate Disseminate
This post seems on point but I didn’t understand the answer enough to answer this question.
Intel’s vPro offers "Total Memory Encryption" (TME), which encrypts RAM and system bus data while the computer is on. Does TME encryption… Continue reading Does Intel’s vPro TME make a locked screen more secure?
There is a room. There is a lot of incentive for people to enter this room. This room allows you to enter and exit whenever you want, but for each minute you stay in the room, you get a dollar. Problem is, it’s very hard to get to the room… Continue reading Prove someone entered and exited a room at specific times without any biometric authentication
UPDATED Summary: I’m looking at Linux FDE options that are transparent to the user (my parents) in that the user doesn’t need to enter 2 passwords. I found/thought of several options and tried to think through the security implications of … Continue reading How good/bad are these transparent Linux consumer FDE setup options? (e.g. for auto-unlocking LUKS)
Our team is looking to either integrate or develop a physical security solution for a rather large campus.
Requirements:
Ability to either integrate (with reader/electronic lock hardware) from our mobile apps which would allow access contr… Continue reading Options for Integrating or developing a physical security solution (physical access control via in-house mobile apps [NFC/Bluetooh])
Is there any remote FDE decryption that is resistant to an attacker that has local physical access?
Tools like dracut-sshd need to store the private key used for the sshd server on the unencrypted boot partition, so a local attacker has th… Continue reading Security against local attack for remote FDE decryption?
I came across this practice, from a big company handling personal customer data, of not allowing developers/maintainers to look straight at the application logs (e.g. good old tail | grep) by connecting to the application servers through S… Continue reading In an enterprise environment, should developers/maintainers be able to look at production logs by accessing the application servers?
Not too long ago, in a basement not that far away, I had a few "system failures" because my remote control socket has been switched off a few times.
Also I got some "covert" visits from some government agents.
There are… Continue reading What to do when The Man is coming after you? [closed]
Assuming the OS is some GNU+Linux distribution,
What is needed to secure such a setup. Are there some things that assume that if you have access to the things described, you own the system? Or anything else? Is such a setup feasible?
The s… Continue reading What is needed for decently secure multi desktop user system where the users have access to input devices, but not to the machine itself?
Are there any recommendations for the physical security of COVID-19 vaccine?
I recently watched this video https://www.youtube.com/watch?v=uoqMA9vAOrQ on covid-19 vaccine distribution. At the 0:40 mark, someone enters a code to access a l… Continue reading Thoughts on Vaccine Security
On January, 6, 2021 we’ve seen a number of people storming the Capitol in Washington D.C.
As they were there inside for 1,5 hours with no supervision, and as there was no prior checking of who they are, it is possible that some of them cou… Continue reading How to sanitize the Capitol after the physical breach? [closed]