BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

Re: fringe: Researchers: Disk Encryption Not Secure

From: "Roy M. Silvernail" <roy () rant-central com>
Date: Thu, 21 Feb 2008 16:17:23 -0500
On Thu, Feb 21, 2008 at 04:03:41PM -0500, B.K. DeLong wrote:

Well, if anything I think it makes a further case for using
multifactor authentication in order to login to machines - a
"something you have" piece.


That's the wrong threat model, though.  The attack described is directly 
against disk encryption.  If the FDE key is exposed through a cold-RAM 
skimming attack, there is no need to login to anything.  The RAM is 
skimmed, then the drive is imaged.  Presto.  Your data is toast.

This can be pulled off over a lunch break, and the only evidence would 
be an unexpected reboot when the victim returns.
-- 
Roy M. Silvernail is roy () rant-central com, and you're not
   "A desperate disease requires a dangerous remedy."
                   - Guy Fawkes
            http://www.rant-central.com

_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml
Previous By Date Next
Previous By Thread Next

Current thread: