[Hrgeeks] TrueCrypt and BitLocker cracked...
Toxicboy Glaves
hrgeeks at chrisglaves.com
Wed Mar 31 20:03:57 EDT 2010
Thanks for clarification
On Wed, Mar 31, 2010 at 7:35 PM, Adam Crosby <adam at uptill3.com> wrote:
> I think that article is sort of misleading. It uses DMA over firewire to grab the in-memory decryption key for the bitlocker and truecrypt drives. It doesn't ACTUALLY break the encryption. The computer has to be seized while powered on. If the computer is powered off, you can no longer use the product to get access to the crypto keys. Additionally, if you have firewire disabled (or don't have firewire at all), the product is useless.
> I think someone locally is working on the equiv. for USB...should be possible with anything that uses DMA...
> --
> Adam
>
> On Mar 31, 2010, at 5:02 PM, Branson Matheson wrote:
>
>> Hey all ...
>>
>> Since this has been the subject of much discussion and the topic of not a few ISSA presentations lately.. I wanted to forward on this little gem. A bit concerning.
>>
>> http://www.net-security.org/secworld.php?id=9077&utm_source=feedburner&utm_medium=email&utm_campaign=Feed%3A+HelpNetSecurity+%28Help+Net+Security%29
>>
>> All your bits are belong to us.
>>
>> -b
>>
>> Branson Matheson
>> branson at sandsecurity.com
>> 757-320-4230
>>
>>
>>
>>
>>
>> --
>> _______________________________________________
>> HRGeeks mailing list
>> HRGeeks at hrgeeks.com
>> http://hrgeeks.com/cgi-bin/mailman/listinfo/hrgeeks
>> You are all sheep.
>
> --
> _______________________________________________
> HRGeeks mailing list
> HRGeeks at hrgeeks.com
> http://hrgeeks.com/cgi-bin/mailman/listinfo/hrgeeks
> You are all sheep.
>
More information about the HRGeeks
mailing list