Nothing is safe anymore

Holy shit. Disk Encryption is cracked, and cracked nastily it is. You are not safe if you are using Windows, Mac or linux as all of them basically use the RAM to store the encryption key.

So currently the only way to fix this is to either use a new memory technology where the RAM is instantly lost on boot or use another place, rather than the RAM. Perhaps we could use an external key? Can DM-Crypt be modified to store the key in a usb-stick? Will that help? Techdirt also mentions that this does not work on disks that decrypt on boot but this is not said in the article…

In any case…ouch!

No time for a comment? Simply click on one of the colours below to let me know how you found this post.

Other similar posts you might like: Is this unbelievable or what? | Gah, cracked again | I feel exploited

About this entry

You’re currently reading an entry written by Db0

Published:: 22.02.08 / 11am

Category:: Planet-LGU, The Undefined Remainder

Tags:: Crack, Encryption, Security

Word count:: 114

Zoulapia

Quote of the Day: USA bullying

Quoth Noam Choamsy (as seen in this post)

Why was the U.S. so intent on destroying northern Laos, so poor that peasants hardly even knew they were in Laos? Or Indochina? Or Guatemala? Or Maurice Bishop in Grenada, the nutmeg capital of the world? The reasons are about the same, and are explained in the internal record. These are ‘viruses’ that might ‘infect others’ with the dangerous idea of pursuing similar paths to independent development. The smaller and weaker they are, the more dangerous they tend to be. If they can do it, why can’t we? Does the Godfather allow a small storekeeper to get away with not paying protection money?

Read the whole article too. It's very RRRRAAAAGE inducing and it nicely exemplifies how imperialism, even violent, army-backed imperialism is only the reality even to this day and age.

Quote of the day: Soviet Train

Quoth Thehellezell

Russia is like a malfunctioning train, and Stalin tried to make it move by putting a gun to the engineer's head. It moved fast for a while, but then sputtered. Khrushchev noticed something was wrong, attempted to alert the other passengers, but was booted off of the train for being a nuisance. The train slowed to a crawl, then stopped. A man named Brezhnev stood up and addressed the passengers: "Pay no mind to the outside scenery! The train will arrive to our destination soon!"

Brilliant metaphor but the rest of the comment is really worth reading. The whole thread is pretty good as well, diving into the familiar argument of "Communism failed because USSR failed."

lofty

26.02.08 / 9pm

ok, fair enough – just saying it’s only a problem in practice, which can be worked round, not so much in principle something that makes disk encryption useless.

Db0

26.02.08 / 6pm

Yes, a solution would be to wipe the keys from the ram when the PC is locked but the developers must actually design this in the program.

I don’t see how this is such a big problem – as long as the disk encryption program knows to remove the keys from memory when the system shuts down (by wiping the RAM not just releasing it to the kernel), then the most serious risk is taken care of – i.e. someone’s encrypted laptop being stolen shortly after they have switched it off, which looks like the most likely situation to me.

A Division by Zer0

Blogroll

Must See

Recent Posts

Tags

Nothing is safe anymore

Great Success

Even more posts of relevance

Reader choice

Recent Comments

Zoulapia

Quote of the Day: USA bullying

Quote of the day: Soviet Train