From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-146020-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	by finch.gentoo.org (Postfix) with ESMTP id 7CBD2198005
	for <garchives@archives.gentoo.org>; Wed, 20 Mar 2013 14:15:37 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 8F2A3E064B;
	Wed, 20 Mar 2013 14:15:24 +0000 (UTC)
Received: from mail-ie0-f180.google.com (mail-ie0-f180.google.com [209.85.223.180])
	(using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 49947E02C4
	for <gentoo-user@lists.gentoo.org>; Wed, 20 Mar 2013 14:15:22 +0000 (UTC)
Received: by mail-ie0-f180.google.com with SMTP id a11so1895010iee.11
        for <gentoo-user@lists.gentoo.org>; Wed, 20 Mar 2013 07:15:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=x-received:message-id:date:from:user-agent:mime-version:to:subject
         :references:in-reply-to:x-enigmail-version:content-type;
        bh=7+HkMMbJMJcPrvtu/kRgHBhY73ldsGhkShJ7LZpbbHE=;
        b=RXTCO8pLYJdDlRT4EojediXFIX3Hqy4Pv+RpGqQgIu1zH+IwpagNRwUvwWQFPxS07x
         9pvmAOC14u7njLzEEFDGhX3C2a2G7LyZc6lujsnTuwqt8X+raFT45Hl0+h1d/REU0WCE
         YlEPFbE4kCKiEbmWkCkvwNY9zEGK+bsvLHxFOM1+9i8AONsRru4ACNwaG5s6CGy1VcF2
         qop8jQmf4rTgwiG6BPES/sjelFsqw2+oHKBKFZ4yUPUxFozHcfI4sY1YhSpre0Qy8FkH
         Lx9Honup8gDlK+7lydv6UmV9sdTRSb/c01ofwQq0QMU9gMneYqPTbPIdo9taF/0WhQNl
         rafQ==
X-Received: by 10.50.17.131 with SMTP id o3mr4405526igd.112.1363788921649;
        Wed, 20 Mar 2013 07:15:21 -0700 (PDT)
Received: from ?IPv6:2001:470:c5b9:beef:4eed:deff:fe93:63a0? ([2001:470:c5b9:beef:4eed:deff:fe93:63a0])
        by mx.google.com with ESMTPS id uy13sm1953785igb.7.2013.03.20.07.15.20
        (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128);
        Wed, 20 Mar 2013 07:15:21 -0700 (PDT)
Message-ID: <5149C474.7030005@gmail.com>
Date: Wed, 20 Mar 2013 10:15:16 -0400
From: Michael Mol <mikemol@gmail.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130222 Thunderbird/17.0.2
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] [OT] Time-lock USB stick
References: <514925C3.8020900@gmail.com> <514977B2.4030408@hadt.biz>
In-Reply-To: <514977B2.4030408@hadt.biz>
X-Enigmail-Version: 1.5
Content-Type: multipart/signed; micalg=pgp-sha1;
 protocol="application/pgp-signature";
 boundary="----enig2BGQWWBPXUPHQIGRDCUTX"
X-Archives-Salt: 1247ad33-c2aa-4d95-9afe-46eaa2b5350c
X-Archives-Hash: 94d9af4f3017b0e908ad5a030f58b358

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
------enig2BGQWWBPXUPHQIGRDCUTX
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

On 03/20/2013 04:47 AM, Michael Hampicke wrote:
> Am 20.03.2013 03:58, schrieb Michael Mol:
>> Does anybody know of time lock flash drives?
>>
>> The scenario I'm looking at is to have a drive that's only accessible
>> for a certain amount of time after being powered on. It would hold
>> crypto keys in a server context.
>>
>=20
> I am no expert on embedded systems, but couldn't you achieve something
> like this by using a small dev board with like an Atmel controller?
> Which you then program to act like an USB stick?
>=20

We discussed using a simple RC timer to cut power to the device after a
certain amount of uptime, but if I pointed out that if we were spend the
time going to that trouble, we may as well go whole-hog and add built-in
encryption and make money off the thing.

I think the grab-data-and-eject solution is probably the best for our
purposes.


------enig2BGQWWBPXUPHQIGRDCUTX
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBAgAGBQJRScR2AAoJED5TcEBdxYwQGRoIAIG/vgnqhEMvmTI/o5Ub64cZ
VnugNFLHtU6b0Z549CW2AD6cVLO64m+mtDejQg3WiQmYQDIpZKK40DApSDHH7N77
zKrZgMU6qcALoV1D6wT/ldoU9ciFfz1drG2LLtm1yQgYBvkJn3lsK+h9K1QhAYEr
iYs0CyF9/XOpGkg8rmxp1/1aOO31WBfjumL68+CYZKkJTGUme+NUcZVjCzEnGpUR
2ZsGMzbF7ry4tDUiGouOe19QPd/UFLwOcwnfy1DIb1tPQ9pnTI7RLDSh56TBI9LH
MV9C1h31VxOOojbdZda9OOrA/rOpoCNDGdTynXxp13wqg/r1I3vHX6tdwBwl1ek=
=YJBq
-----END PGP SIGNATURE-----

------enig2BGQWWBPXUPHQIGRDCUTX--