[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: opaque data types
|
From: |
Christopher Schmidt |
|
Subject: |
Re: opaque data types |
|
Date: |
Sat, 8 Jun 2013 10:19:34 +0100 (BST) |
Ted Zlatanov <address@hidden> writes:
> CS> Considering we are talking about a regular userspace application
> CS> with no distributed components I do not see any advantage at all
> CS> by encrypting passwords in memory. How does interposing a
> CS> function to extract passwords from a new inbuild type increase
> CS> security at all?
>
> By making it less trivial to extract them.
That is security through obscurity.
> The opaque type makes it possible to change the implementation if
> better ways are available on a platform, e.g. the Mac OS X keychain or
> the Secrets API or the W32 keychain. The fallback mechanism can at
> least make it a little harder to get someone's passwords.
Storing passwords using different backends does not require in-memory
encryption or a new opaque type.
How is this new type in combination with custom hard back ends superior
to what auth-info.el is doing already?
> CS> Who's your attacker anyway?
>
> Do we have to do risk assessments too?
I do not understand that question.
I was asking for an informal threat model because I did not understand
the problem you are trying to solve. I still do not understand the
problem and I do not see how that new type makes provides any advantage
whatsoever.
Christopher
- RE: plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!), (continued)
- RE: plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!), Drew Adams, 2013/06/05
- Re: plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!), Ted Zlatanov, 2013/06/05
- Re: plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!), Stephen J. Turnbull, 2013/06/06
- Re: plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!), Ted Zlatanov, 2013/06/06
- Re: plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!), Stephen J. Turnbull, 2013/06/06
- opaque data types (was: plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!)), Ted Zlatanov, 2013/06/07
- Re: opaque data types, Christopher Schmidt, 2013/06/07
- Re: opaque data types, Ted Zlatanov, 2013/06/07
- Re: opaque data types, Christopher Schmidt, 2013/06/07
- Re: opaque data types, Ted Zlatanov, 2013/06/07
- Re: opaque data types,
Christopher Schmidt <=
- Re: opaque data types, Ted Zlatanov, 2013/06/09
- Re: opaque data types, Stefan Monnier, 2013/06/07
- Re: opaque data types, Ted Zlatanov, 2013/06/07
- opaque data types, Stephen J. Turnbull, 2013/06/08
- opaque data types [revise and resend], Stephen J. Turnbull, 2013/06/08
- Re: opaque data types [revise and resend], Ted Zlatanov, 2013/06/10
Re: plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!), Stefan Monnier, 2013/06/04