[PYTHON-CRYPTO] AES in M2Crypto advice

Ng Pheng Siong ngps at POST1.COM
Thu Jun 5 08:46:05 CEST 2003

On Tue, Jun 03, 2003 at 12:13:17AM +0700, Jason H. Smith wrote:
Content-Description: signed data
> The problem is, the system administrator, or an intruder, should not have
> access to, say, the CEO's laptop image; so there's the encryption
> requirement.

IMHO, it is more important that the thief who steals the CEO's laptop or
the subsequent black market buyer do not get access to the files on it.

Install a crypto filesystem type thingy on the laptop and train the CEO to
use it properly. Then just backup the disk image normally; sensitive stuff
should already be secured by the crypto filesystem. You can escrow the
passphrase with the corporate lawyers or, ahem, a trusted third party. (Not
your $25 SSL cert vendor, fer sure. ;-)

> Thanks for the implementation advice, as well.  I'm relatively new to
> Python and GUI programming.  So I'm still boggling over the correct
> approach.

Yes, having fun is important too. ;-)

Ng Pheng Siong <ngps at netmemetic.com>

http://firewall.rulemaker.net  -+- Manage Your Firewall Rulebase Changes
http://www.post1.com/home/ngps -+- Open Source Python Crypto & SSL

More information about the python-crypto mailing list