From: Christopher Schmidt <christopher@ch.ristopher.com>
To: emacs-devel@gnu.org
Subject: Re: opaque data types
Date: Sat, 8 Jun 2013 10:19:34 +0100 (BST) [thread overview]
Message-ID: <877gi5gdsq@ch.ristopher.com> (raw)
In-Reply-To: <87y5alq58o.fsf@lifelogs.com> (Ted Zlatanov's message of "Fri, 07 Jun 2013 12:01:59 -0400")
Ted Zlatanov <tzz@lifelogs.com> writes:
> CS> Considering we are talking about a regular userspace application
> CS> with no distributed components I do not see any advantage at all
> CS> by encrypting passwords in memory. How does interposing a
> CS> function to extract passwords from a new inbuild type increase
> CS> security at all?
>
> By making it less trivial to extract them.
That is security through obscurity.
> The opaque type makes it possible to change the implementation if
> better ways are available on a platform, e.g. the Mac OS X keychain or
> the Secrets API or the W32 keychain. The fallback mechanism can at
> least make it a little harder to get someone's passwords.
Storing passwords using different backends does not require in-memory
encryption or a new opaque type.
How is this new type in combination with custom hard back ends superior
to what auth-info.el is doing already?
> CS> Who's your attacker anyway?
>
> Do we have to do risk assessments too?
I do not understand that question.
I was asking for an informal threat model because I did not understand
the problem you are trying to solve. I still do not understand the
problem and I do not see how that new type makes provides any advantage
whatsoever.
Christopher
next prev parent reply other threads:[~2013-06-08 9:19 UTC|newest]
Thread overview: 24+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-06-04 22:44 plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!) Daniel Hackney
2013-06-04 23:01 ` Dmitry Gutov
2013-06-05 14:53 ` Ted Zlatanov
2013-06-05 17:41 ` Stefan Monnier
2013-06-05 17:56 ` Drew Adams
2013-06-05 18:06 ` Ted Zlatanov
2013-06-06 9:30 ` Stephen J. Turnbull
2013-06-06 12:51 ` Ted Zlatanov
2013-06-07 3:07 ` Stephen J. Turnbull
2013-06-07 13:03 ` opaque data types (was: plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!)) Ted Zlatanov
2013-06-07 13:27 ` opaque data types Christopher Schmidt
2013-06-07 14:11 ` Ted Zlatanov
2013-06-07 15:44 ` Christopher Schmidt
2013-06-07 16:01 ` Ted Zlatanov
2013-06-08 9:19 ` Christopher Schmidt [this message]
2013-06-10 3:56 ` Ted Zlatanov
2013-06-07 16:17 ` Stefan Monnier
2013-06-07 17:48 ` Ted Zlatanov
2013-06-08 6:11 ` Stephen J. Turnbull
2013-06-08 6:28 ` opaque data types [revise and resend] Stephen J. Turnbull
2013-06-10 4:00 ` Ted Zlatanov
2013-06-05 1:34 ` plist-based package.el (was Re: cl-defstruct-based package.el, now with ert tests and no external tar!) Stefan Monnier
2013-06-06 1:31 ` Daniel Hackney
2013-06-08 6:47 ` Rand User
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://www.gnu.org/software/emacs/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=877gi5gdsq@ch.ristopher.com \
--to=christopher@ch.ristopher.com \
--cc=emacs-devel@gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/emacs.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).