Sunday, February 25, 2018
While most people were contemplating what to wear on the way to the newsagent's this morning I was once again tinkering with crypto stuff.
The complex subject of air gapped computing was front and centre at 9am in my world. Unless you write your own OS in a Faraday cage then at some point, some part of your computer will have touched the internet. Getting the computer set up with the many updates you probably want for the new system and then pulling it offline is probably what most people do, but is that good enough? Many will argue that it isn't. There has to be a reasonably secure middle ground.
My solution is to power a Pi Zero W from my Pi Top and SSH into it via my phone acting as a wifi hotspot. In effect the Pi Zero W is connected to the internet but isn't accessing it. The only job it has to do is allow me access to the CLI so that I can use the on board hardware random number generator and then only over a secure connection.
If I sit in my Faraday cage of a car in the middle of nowhere especially with a dire cell tower signal I should be OK doing a couple of minutes work.
It's about as good as things are going to get in an ever increasingly connected world. All I need to do now is map cell tower dead spots.
Wish me luck with that one.