jhup wrote:
[rabbit hole]
I can imagine a full disk encryption with a PXE-like stub of sorts for example.
The device drivers and decryption code is downloaded each and every time from the (TFTP) server, possibly providing some additional authentication to it too.
The code would assist on the decryption of the drive and continue from thereon the boot process.
[/rabbit hole]
[deeperrabbit hole] <img src="images/smiles/icon_eek.gif" alt="Shocked" title="Shocked" />
I can imagine a full disk encryption that only decodes if an inbuilt GPS device is providing the correct geolocalization (out of a list of set "allowed" places) AND that initiates self destruction if the geolocalization provides data in a 100 m radius from any place in a blacklist (digital forensics laboratories, Police buildings, Government buildings, etc.) or if the gps device is not connected.
[/deeper rabbit hole]
<img src="images/smiles/icon_razz.gif" alt="Razz" title="Razz" />
jaclaz
↧