Re: [Qemu-devel] vNVRAM / blobstore design

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] vNVRAM / blobstore design

From:	Michael S. Tsirkin
Subject:	Re: [Qemu-devel] vNVRAM / blobstore design
Date:	Tue, 2 Apr 2013 15:06:57 +0300

On Sun, Mar 31, 2013 at 04:48:24PM -0400, Kenneth Goldman wrote:
> "Michael S. Tsirkin" <address@hidden> wrote on 03/31/2013 04:17:28 AM:
> >
> > You want to protect against someone who is able to
> > manipulate some bits in the file (content) but not others (hash)?
> > What's the attack you are trying to protect against here?
> >
> > I'm guessing the only result of extra checksums would be
> > unbootable guests when qemu manages to corrupt the checksum
> > without any help from attackers ...
> 
> You are of course correct.  I advised an integrity value just to detect
> a hardware or software fault.  The check value would not protect against an
> attack.

Fair enough, but why protect these bits specifically?
E.g. disk corruption seems more likely (since it's bigger). Add
integrity at that level? Why even stop at detection, let's do error
correction ...

-- 
MST

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Qemu-devel] vNVRAM / blobstore design, Michael S. Tsirkin <=
- Re: [Qemu-devel] vNVRAM / blobstore design, Kenneth Goldman, 2013/04/02
  - Re: [Qemu-devel] vNVRAM / blobstore design, Michael S. Tsirkin, 2013/04/02

Prev by Date: [Qemu-devel] [Patch] v2 fix /proc/self/maps output
Next by Date: [Qemu-devel] [Bug 1042388] Re: qemu: Unsupported syscall: 257 (timer_create)
Previous by thread: [Qemu-devel] [Patch] v2 fix /proc/self/maps output
Next by thread: Re: [Qemu-devel] vNVRAM / blobstore design
Index(es):
- Date
- Thread