#4443 NORM Update.: XO activation lease replay protection
Zarro Boogs per Child
bugtracker at laptop.org
Fri Jun 6 16:30:39 EDT 2008
#4443: XO activation lease replay protection
--------------------------+-------------------------------------------------
Reporter: mstone | Owner: cscott
Type: enhancement | Status: new
Priority: normal | Milestone: Update.2 (8.2.0)
Component: security | Version:
Resolution: | Keywords: security, activation
Verified: 0 | Blocking:
Blockedby: |
--------------------------+-------------------------------------------------
Comment(by mstone):
This is a basic property of correct lease-checking initramfsen which is
orthogonal to the issue of attacks on the substrate of the lease-checker;
i.e. the filesystem and the real-time clock. As the ticket states, a
correct implementation should accept activation leases exactly once. At
the time this ticket was created, I believe we thought that we had greater
ability to make small amounts of information expensive to rewrite, e.g. by
storing them in the SPI flash or on a protected part of the filesystem.
--
Ticket URL: <http://dev.laptop.org/ticket/4443#comment:4>
One Laptop Per Child <http://laptop.org/>
OLPC bug tracking system
More information about the Bugs
mailing list