Deniability - When the Adversary is the cloud provider himself #36
Labels
No Label
/!\ On Priority - High Quality Tutorial
? Impossible Currently ?
Complex
Doable
Simple
To be improved / simplified / finished / fixed
pushed to prod (1 month external review)
No Milestone
No project
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: nihilist/blog-contributions#36
Loading…
Reference in New Issue
Block a user
No description provided.
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
the idea is what to consider when you have a VPS, and a dedicated server, what can the cloud provider actually see and do ?
on a VPS and on a dedicated server: dedicated server is potentially safer as you have lower access to the server (meaning the cloud provider has less software capability to spy on what you do inside the machine, than on he did on the VPS
With and without custom host OS (malicious kernel modules allowing the cloud provider to spy on what users do
the cloud provider has physical access to the server so:
TLDR the ideal setup is :
-dedicated server
-custom host OS with integrity checks (kernel modules, physical changes monitoring, etc)
-encrypted harddrives