In article <fq632k$e8f$01$1@news.t-online.com>,
Ertugrul Söylemez <es@ertes.de> wrote:
>It's not the operating system's
>responsibility to decide, which parts of the memory contain sensitive
>data.

On the other hand, mandatory access controls such as those provided by
SELinux at least provide a framework that could allow the OS to know
the relative sensitivities of data in RAM. Preserving the MAC label
of freed-but-not-erased RAM would assure that the information is
available to prioritize an emergency memory wipe.

:: Jeff Makey
jeff@sdsc.edu

Department of Tautological Pleonasms and Superfluous Redundancies Department