On Tue, 10 Dec 2024 21:19:17 +0100, Implausibility <open...@hottub.ca> wrote: > > Is the key to an OpenBSD (7.6) encrypted disk stored 'in the clear' in > RAM? Or is the key somehow obscured while in memory? >
How do you see the use of these keys if they are stored in an encrypted way? > My security needs for web server with a few blogs and personal eMail is > relatively low, and my goal here is to be 'better than average' in case > the cloud provider is compromised and attackers get access to disk / RAM > on the VMs. > When the attacker has access to all memory and disk of your VM. Full homomorphic encryption allows to compute in encrypted domain, but it had performance penalty that makes it almost useless. But anyway, your server needs data in unencrypted, clear form that should be sent over network. -- wbr, Kirill
