ecryptfs-users team mailing list archive
-
ecryptfs-users team
-
Mailing list archive
-
Message #00036
Re: Wrapping mount key file by using two or more keys?
On Fri, Feb 26, 2010 at 11:43:27AM +0800, Dustin Kirkland wrote:
> You mean, with either one of two keys being valid? Or requiring two
> sequential keys to be entered?
Either one.
> Given your Moblin association, I'm guessing you're looking for
> something like a wrapped-passphrase that can be unlocked using either
> a standard login password or a 4-digit PIN or something?
Yeah, right. Should be something like that.
> If so, I think the way forward would be to support a list of
> wrapped-passphrase* files, where the relevant ecryptfs tools gather a
> list of wrapper-passphrase*, and sequentially try to unwrap each until
> a success happens.
Exactly. Does such an infrastructure exist? Or maybe I can start to
write one.
BTW, does this has anything to do with PKCS#11 support?
Thank you.
--
Best regards,
Li, Yan
Moblin Team, Opensource Technology Center, SSG, Intel
Office tel.: +86-10-82171695 (inet: 8-758-1695)
OpenPGP key: 5C6C31EF
IRC: yanli on network irc.freenode.net
Follow ups
References