Lest We Remember: Cold Boot Attacks on Encryption Keys
Loading...
Uploaded by pucitp on Feb 21, 2008
Describes the attacks that result from the remanence of encryption keys in DRAM after power loss.
For more information, visit:
http://citp.princeton.edu/memory
- 643 likes, 25 dislikes
-
Link to this comment:
Top Comments
All Comments (279)
-
@EUBG your an idiot... sure it could write 0's/random data on shutdown but if you f*cking pulled the plug/battery than that wont work..... you can just buy extra hardware for you computer that surges the ram with a internal battery when a voltage drop is detected or a shutdown... all else just turn off when done...
-
@Evi1M4chine Nope, see truecrypt docs
"Inherently, unencrypted master keys have to be stored in RAM too. "
-
I think you'd look awfully suspicious sitting next to a computer with the back open hosing down the RAM with an aerosol can.
-
Even if is not, is stupid, prove you can dump an encryption key with a residual image of the joconde.
If any letter or symbol or number is missing on the data file of encryption key it isnt work, all the blanc data need to be brute-forced. If you have more than 20 blank in the key code the probleme is the same has a long password, you need a supercomputer and some years to break it.
-
@Evi1M4chine Can you or anyone of your supporters prove that statement? Fixed? No. At least their documentation still says today: “Inherently, unencrypted master keys have to be stored in RAM too..”
This will not be subject to change – it is simply not possible without using a TPM.
-
@Evi1M4chine test
-
Mac OS X never offered full disk encryption. OS X 10.7 (Lion) does. Just an FYI...
-
Another nice (and easy to do) thing would just be ordering the machine to write all the bits in ram to 0 or 1 or so when it's ordered to shutdown. (Any Linux distro -> Very very easy, Windows -> can't tell, OS X -> can't tell.)
Wouldn't be hard to accomplish... :'D
-
i want to sex the mouth of the woman who narrates
-
Anyone who carelessly leaves their laptop laying around is an idiot and deserves to lose it!
7 months ago 3
- 1:04Remanence of Memoryby pucitp13,862 views
- 53:51Invited Lecture Series: Games With A Purposeby pucitp2,365 views
- 4:52C.I.T.P. -- an interviewby pucitp813 views
- 1:12:10Invited Lecture Series: Internet Censorship: Ho...by pucitp451 views
- 2:58Hacker gadgetby h3kki103,901 views
- 2:13How to see through clothingby WilliamRayWalters26,611,570 views
- 6:05We Rememberby carlasue88233,181 views
- 5:29We Rememberby twaladybug70,137 views
- 0:28HACKING A VENDING MACHINEby sele5091,711,492 views
- 2:30Steganographyby OobyDoob13,750 views
- 2:28Windows 95 in a 2GHZ computerby tazzzzzz331,204,034 views
- 4:59Criptografiaby robsonwa27,158 views
- 7:02EnCase Computer Forensics Demoby threesandals98,399 views
- 9:57Full Disk Encryption with TrueCryptby thesourcecomputing40,705 views
Also, TrueCrypt already fixed that problem, by never storing the key freely in RAM, a looong time ago.
Evi1M4chine 2 years ago 25
Well, after that i'd say:
When the police stands in front of your door, shut the PC down.
Take your time, do something for at least 2 Minutes and the RAM is empty. - Safe -
TheWanAntOnly 1 year ago 11