Re: Are there any API's available for performing cryptographic functions in a kext?
Re: Are there any API's available for performing cryptographic functions in a kext?
- Subject: Re: Are there any API's available for performing cryptographic functions in a kext?
- From: Michael Smith <email@hidden>
- Date: Fri, 20 Feb 2009 22:10:30 -0800
On Feb 20, 2009, at 6:35 AM, Tom Fortmann wrote: Can anyone point me to any documentation on available (Leopard) API’s to perform encryption and possibly Diffie-Hellman calculations within a kernel extension? We want to secure our kernel interface and are looking to encrypt the data exchanged between a user-space daemon and our kext. I know there is open-source available we could link this directly in to our kext, but I would prefer to live within any existing security framework that may exist within the OSX kernel space.
Tom,
Why would you trust any such service any more than you trust the services that provide the communications channel between the user process and your extension?
Perhaps you could explain what you mean by "secure our kernel interface" a little more and that might clarify the matter, but as a general rule if you are looking to keep something secret, you need private hardware; the kernel address space is not protected in that fashion.
= Mike
|
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-kernel mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden