On Tue, Aug 21, 2018 at 9:13 PM Sean Fagan <sef_at_ixsystems.com> wrote: > On Aug 21, 2018, at 8:11 PM, Alan Somers <asomers_at_freebsd.org> wrote: > > The last time I looked (which was a long time ago), Oracle's ZFS > encryption looked extremely vulnerable to watermarking attacks. Did > anybody ever fix that? > > This isn’t Oracle’s implementation, but I don’t know how compatible or not > it is with it. > > Sean. > It wasn't just an implementation problem, it was in the design. IIRC, Oracle's encryption allowed encrypted blocks to be deduplicated. There's pretty much no way to defend against watermarking attacks with such a design. Does the new encryption design have the same flaw? -AlanReceived on Wed Aug 22 2018 - 01:22:45 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:41:17 UTC