My question is: if I contribute this to the Qubes project (which will be a huge amount of work) - how likely will it be to gain acceptance?
My solution includes verifier impersonation resistance (NIST SP800-63-3 AAL3) and additional decryption keys - it uses mobile phones (and optional biometrics or passphrase to encrypt the keys in protected storage there) for fast and convenient (and in the case of servers - remote) unlock usage, combined with a lightweight network-aware pre-image for triggering a "wake-up" phone push event and key reception (I also support audio-QR and bluetooth for local users).
My proposal allows anyone to implement their own verification service atop my open protocol, but they can also use my (commercial) product for immediate working protection (free for individuals and non-profits etc, modest fee for others). We put some effort into independently securing the mobile component, but the true security comes from the second-device nature - any compromise of either (not both) hardware devices does thus not compromise your whole system. (PC boot integrity forms part of the verifier-impersonation resistance, for which I owned the (now expired) patent 6,006,328.)
The same solution also optionally supports (once booted) PAM and other 2FA mechanisms, quickly providing multifactor (and optional biometric) protection to system operations (sudo/su/ssh/etc) or other risky behaviour.
Chris.
Naja
--
You received this message because you are subscribed to a topic in the Google Groups "qubes-devel" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/qubes-devel/ntlJ0GlXDDI/unsubscribe.
To unsubscribe from this group and all its topics, send an email to qubes-devel+unsubscribe@googlegroups.com.
To post to this group, send email to qubes...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-devel/cdd5e544-02d5-423d-76fd-ccf9d1686d32%40autistici.org.
For more options, visit https://groups.google.com/d/optout.