summaryrefslogtreecommitdiffstats
path: root/wiki/src/blueprint/protect_against_external_bus_memory_forensics.mdwn
blob: 66e43a0a5a348263cc57dba37a2ebd03a1fec12c (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
[[!toc levels=2]]

Rationale
=========

It should not be that easy, for an attacker with physical access, to
retrieve Tails memory. (Note that this will especially be the case for
a [[Tails server|todo/server_edition]] instance left unattended.

Archive
=======

## other implementation ideas

* If a firewire card was inserted into the slot and the bus is active,
  pop up a dialog and ask "hey, you want to use firewire/etc.?"
* disable these buses by default, allow opt-in through tails-greeter
  to enable
* ask that users assert they want to use this or that bus, and make
  the assertion bind to a single device, rather than all devices
  blindly
* de-activate PCMCIA and ExpressCard on systems that don't have any
  PCMCIA or ExpressCard devices after running for 5 minutes. This is
  going to byte some users, but probably only the first time.