Protection against GrapheneOS infrastructure compromise

boldsuck

horde Encryption key while it is still in RAM.

Why should an opensource OS that anyone can download be encrypted?

The SSH keys for committing and signing @Github are with the devs. I have my Fido2 SSH keys on OnlyKeys and NitroKeys, for example.

horde The drives, I thought that's what everyone does (FDE), right?

That depends. Nobody encrypts the Tor exit server, on purpose.

horde

boldsuck

Encryption key while it is still in RAM

Why should an opensource OS that anyone can download be encrypted?

I meant the OVH VM server

There's a lot of misunderstanding here to what I meant, perhaps I should have elaborated in the initial post.

GrapheneOS

de0u It's up to 10 days of web server access logs but it's only 4 days for the network services and authoritative DNS services. It might get reduced to 4 for the update servers too, but first we need to implement generating statistics from the logs on a daily basis so we can still figure out how approximately how many devices installed a given update, etc.

GrapheneOS

horde Updates have their signatures verified and downgrades are prevented. GrapheneOS releases for the OS and apps are signed with keys unavailable to any of the servers. An attacker getting access to any servers can't release a malicious upgrade or ship an old version as a downgrade. We don't build or sign releases on the server infrastructure. There's a clear list of the default connections at https://grapheneos.org/faq#default-connections. There are the update connections which do not trust the update server and the network services which don't send sensitive data to them and are only to get the current time, PSDS data for satellite-based geolocation, etc. Chromium component updates are signed.

GrapheneOS

horde Our official builds machines are local machines under our physical control. Those of course those have full disk encryption along with the keys being encrypted to keep them at rest when the machines are booted which they are nearly all of the time. We don't build or sign any releases on servers in any data centers or anything like that. This is also clearly documented.

None of the default services used by the OS store any user data in the first place. They have web server access logs, but there's no sensitive data recorded as part of those. Someone who can monitor the encrypted traffic over the network obtains nearly the same metadata: source IP, destination IP and domain name via SNI. The logged paths don't contain any sensitive data. They're standard paths. Our FAQ explains this:

https://grapheneos.org/faq#default-connections

We could add some basic info about the machines we use to build and sign GrapheneOS but that wouldn't be on the server page since it's an entirely separate thing.

GrapheneOS

de0u The servers do use encrypted swap with a per-boot key in case session keys, etc. end up there to avoid it persisting indefinitely. We're not handling sensitive user data with these services though. There are no accounts or stored user data for the default services. This discussion forum has user accounts and user generated content but it has no private messages, so the only private data are passwords / emails / IPs, and it's not something used by the OS so it's not really relevant to it.

It's not clear what threat model FDE would be protecting against for the services. An attacker obtaining access to them wouldn't be stopped by FDE. They're always running so the data would never be at rest. It makes little difference to this whether we use or VPS or managed dedicated server since a compromise of the provider's control plane would give access to either. FDE would only defend against someone grabbing drives out of servers or taking the whole servers. There's no user data on the default enabled services, just access logs, and all those really show is that an IP had a GrapheneOS device using it. Does that really matter even for people not using a VPN provider?

GrapheneOS

horde No, you're misunderstanding how GrapheneOS is built, signed and updated.

boldsuck

horde I meant the OVH VM server

Me too.
What is the benefit of encrypting a VM in the OVH, Hetzner, AWS or other cloud or rented vServers? ;-)

GrapheneOS

boldsuck It's no different with managed dedicated servers. Their management layer can take control of them. After all, they're capable of automatically handling cancelling a subscription and handing it over to someone else.

Full disk encryption on desktops, laptops and servers provides very little protection against a physical attacker while the machine is booted. Colocated servers don't have that management layer managing them but they're still at the mercy of the people with physical access, and in practice that essentially includes a whole bunch of other people colocating servers in the same DC so it's not necessarily a good tradeoff... Server hardware does not provide similar protections to an iPhone/Pixel against a physical attacker, not even close. They try to check off a few features from a list but do not even have real verified boot, etc. Generally, you can hook up debugging cables to the motherboard, etc. and do essentially whatever you want with no barriers to it. It's not taken at all seriously. Google and now Apple are both trying to change that, but hardly anyone else is, and to benefit from that you'd need to use GCP and trust their management layer, etc.

horde

GrapheneOS Have you looked into https://www.intel.com/content/www/us/en/architecture-and-technology/vpro/hardware-shield/total-memory-encrpytion.html ?

GrapheneOS

horde Neither this or AMD SEV actually change anything for what we wrote above. They're a step towards it, sure.

horde

GrapheneOS hmm ok, so basically servers hardware are lacking in terms of security compared to Pixel devices and also their boot loader is not that good. Does a microhypervisor like Nova help at all? It offers: boot-time relocation and code patching, multiple resource spaces, support for suspend/resume, cache allocation technology, control-flow protection and multi-key total memory encryption

GrapheneOS

We're not interested in discussing unrelated topics. The update servers are not trusted the way you wrongly believe they are.

« Previous Page