Security / data protection question.

Networking/Security Forums -> General Security Discussion

Author: shanor123 PostPosted: Wed Dec 08, 2010 11:16 am    Post subject: Security / data protection question.
    ----
I'd like to find a good solution for the following scenario:
1. Device #1 is a Bluetooth headset which can record (via its microphone) external conversations and encrypt.
2. Device #2 is a SmartPhone that is able to receive these recordings and decrypt them for personal playback when the owner desires to do so.
3. A backup of all of these recordings is made on a cloud server, highly encrypted.

I'd like to meet the following requirements:
1. If either (or both) the headset or the SmartPhone are stolen / lost, the recordings can not be accessed by someone that is not the initial owner that performed these recordings.
2. If either (or both) the headset and lost or replaced by the initial owner, all recordings may still be accessed by the initial owner that performed these recordings.
3. The initial owner that performed the recordings should be allowed to playback (decrypt) on Device #2 (the SmartPhone ) the recordings that were made by the initial owner.
4. Operations should be as "simple" as possible while maintaining privacy and security for the initial owner that performs the recordings.

Under the following assumptions:
1. The recordings and highly confidential and highly private and should be protected.
2. Access to the recordings should be allowed only to the initial owner / recorder of the headset and the SmartPhone .
3. It is fair to assume that the SmartPhone has an internet connection.
4. I would prefer a distributed solution rather than a centralized key-holder.

Is this possible to do?
Should a biometric authenticator be part of the solution?

Thanks,
OS.



Networking/Security Forums -> General Security Discussion


output generated using printer-friendly topic mod, All times are GMT + 2 Hours

Page 1 of 1

Powered by phpBB 2.0.x © 2001 phpBB Group