Thursday, February 21, 2008

Defeating Disk Encryption...

Well here it is a simple way to blow disk encryption to hell.  Evidently you guys using it should pay attention.  Encryption keys that are used to decrypt your hard disks are stored in DRAM on each machine.  When the machine is powered down, evidently the encryption keys are still stored within the DRAM.  This allow someone to boot up the machine from a USB thumb drive with a secondary OS that will copy the RAM.  It can then be searched for the encryption keys allowing for the disk data to be recovered. 

Someone should tell the dude at Command Line Warriors that he might have to re-think the security on his Encrypt /home Campaign.

I suggest watching the video guys.

More info here, here, and an articles here.

No comments: