Reputation: 572
Linux of equivalent CryptProtectMemory
I am trying to secure my in-memory data against swap file reads when my process memory will be paged out.
I know CryptProtectMemory() in Windows SDK which can be used to encrypt memory buffers.
I couldn't find any such function on Linux, please let me know if anyone knows.
We can use mlock() so that memory is not paged out, but does that imply my secretes are secure?
Upvotes: 7
Views: 4659
Answers (2)
Reputation: 7766
The closest equivalent in Linux to CryptProtectMemory() is gcry_malloc_secure() in libgcrypt. The secure memory allocated will be locked in memory; gcry_free() will zeroize and deallocate it. Other crypto libraries have similar calls, for instance the template secure_vector in Botan.
Another approach is indeed to use the lower-level POSIX call mlock() on the whole buffer. The burden of zeroizing the buffer is with you though. You must manually call memset()) when the buffer is not used anymore or when your program terminates.
CryptProtectMemory() seems to do something slightly different than any of the two approaches above: it creates a small, random session key and uses it to encrypt the buffer. The benefit is that you only need to lock and finally zeroize only the very small page where the key resides, and not the whole buffer. That may make a difference if the buffer is very big. However, we will not be able to operate or process data in the buffer. There is also a small time window when secret data is swappable.
Upvotes: 9
Reputation: 2621
I'm wondering if encrypting (part of the) memory of your process will end up in a chicken-egg problem. I mean, the password to encrypt/decrypt the block(s) of memory of interest should be somewhere in memory, inside the address space of your process. If some malicious code can access/inspect your process address space at runtime you are not going to solve the problem (but you are making the observer life harder ;))
If you are working in user space you can build some wrapper to encrypt/decrypt your variables/memory using any available crypto library (ie. OpenSSL libcrypto), I guess. You could create some sort of "secure variable" object, but be aware that some crypto algo requires padding (size of base types might need to be modified accordingly) In kernel space you can use the LKCF (Linux Kernel Crypto API)
Upvotes: 1
Related Questions
- Crypto in Linux
- Rijndael alternative for Linux
- How to add an encryption algorithm in the FreeBSD Kernel?
- how to use crypt( ) method in Linux?
- Java based encryption library for Android
- Open Source Full Disk Encryption for BSD Operating System?
- Encryption without decryption
- Encryption and Decryption using AES in Linux Kernel
- Want an example for using aes encryption method in kernel version above or equal 2.6.38
- Encryption/Decryption engine