Thanks a lot for your answer! Although I still dont understand it very well what is the threat model here.
I am assuming that if you are not talking about being root on a liveCD booted in the computer (which would still be quite tricky in a well protected system) but about an attacker being root already in my system, at which point it already has access to all my data and can do whatever to my system.
Even if it were from a liveCD, it couldn't modify my system because all the disk is encrypted so it cannot modify it. If it wasn't encrypted, it already would have access to all my data and could do anything in there.
This is my understanding of how things work:
On boot, secureboot ensures that the bootloader boots a kernel/initrd that has not beeing tampered with, during the boot process, I get asked a passphrase to decrypt my whole disk by this software that we know has beeing untampered and then all the regular start up process continues as usual. In case the system was hibernated to an ecrypted swap, after decrypting the full disk, the swap would be decrypted too and the system could be resumed from that swap.
Or maybe the swap must be decrypted before that? Maybe I should use a passphrase protected swap?
I am assuming that if you are not talking about being root on a liveCD booted in the computer (which would still be quite tricky in a well protected system) but about an attacker being root already in my system, at which point it already has access to all my data and can do whatever to my system.
Even if it were from a liveCD, it couldn't modify my system because all the disk is encrypted so it cannot modify it. If it wasn't encrypted, it already would have access to all my data and could do anything in there.
This is my understanding of how things work:
On boot, secureboot ensures that the bootloader boots a kernel/initrd that has not beeing tampered with, during the boot process, I get asked a passphrase to decrypt my whole disk by this software that we know has beeing untampered and then all the regular start up process continues as usual. In case the system was hibernated to an ecrypted swap, after decrypting the full disk, the swap would be decrypted too and the system could be resumed from that swap.
Or maybe the swap must be decrypted before that? Maybe I should use a passphrase protected swap?
Statistics: Posted by diego-treitos — 2024-06-12 10:31 — Replies 5 — Views 109