Comments on: Princeton study: Disk encryption not safe http://www.rlslog.net/princeton-study-disk-encryption-not-safe/ Hot info about new scene releases! Mon, 23 Nov 2009 06:02:08 -0500 http://wordpress.org/?v=2.8.4 hourly 1 By: ireshine http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245933 ireshine Sat, 23 Feb 2008 01:21:27 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245933 how did they dump the RAM to the hard disk? "whats the name of the program" and how do you dump the memory under windows, if its not log out? (freeware,not winhex by x-ways) And if criminal does steel your laptop/PC and finds it encrypted or password protect , in most cases they format the hard drive and try to sale it as fast as possible. how did they dump the RAM to the hard disk?
“whats the name of the program” and how do you dump the memory under windows, if its not log out? (freeware,not winhex by x-ways)

And if criminal does steel your laptop/PC and finds it encrypted or password protect , in most cases they format the hard drive and try to sale it as fast as possible.

]]> By: Edd Miles http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245762 Edd Miles Fri, 22 Feb 2008 22:25:27 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245762 @7 that article is wrong. Whilst having the ram soldered onto the mobo makes it virtually impossible to use the attack by removing the ram, it has no protection against booting off an external HDD (If the mac air supports that? Don't know!) and stealing the data from Ram that way. Requires more time, but is no more secure that the solution being mooted on the truecrypt forums (namely gluing your ram in place [using a glue that can be removed of course, but as long as you pick one that requires heat and to remove it you'd be just as secure!]) @29 it will most probably work. This is not a flaw in the way any encryption software works (With the possible exception of bitlocker which is apparently extra vulnerable) but is rather a problem with the way the hardware the system is built on runs. @31 Damn straight. If you are *that* worried about someone using this attack on you, you should have far superior protection methods than just encryption! @7 that article is wrong. Whilst having the ram soldered onto the mobo makes it virtually impossible to use the attack by removing the ram, it has no protection against booting off an external HDD (If the mac air supports that? Don’t know!) and stealing the data from Ram that way. Requires more time, but is no more secure that the solution being mooted on the truecrypt forums (namely gluing your ram in place [using a glue that can be removed of course, but as long as you pick one that requires heat and to remove it you'd be just as secure!])

@29 it will most probably work. This is not a flaw in the way any encryption software works (With the possible exception of bitlocker which is apparently extra vulnerable) but is rather a problem with the way the hardware the system is built on runs.

@31 Damn straight. If you are *that* worried about someone using this attack on you, you should have far superior protection methods than just encryption!

]]> By: didijeeeke http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245731 didijeeeke Fri, 22 Feb 2008 21:58:10 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245731 Some1 could break into a datacenter and actualy steal infromation using this methode. Normaly even if you manage to break in into a datacenter and steal a hard disk. You still have nothing. But using this methode you are able to get the key without any problem. Normaly a secure server is completly locked out even when you have direct acces. Bios is locked out and hard disks are encrypted. On a very secure server this would be a easy way to get the information. Some1 could break into a datacenter and actualy steal infromation using this methode.
Normaly even if you manage to break in into a datacenter and steal a hard disk. You still have nothing. But using this methode you are able to get the key without any problem. Normaly a secure server is completly locked out even when you have direct acces. Bios is locked out and hard disks are encrypted. On a very secure server this would be a easy way to get the information.

]]> By: hikaricore http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245503 hikaricore Fri, 22 Feb 2008 19:54:55 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245503 no sh*t sherlock no sh*t sherlock

]]> By: Atlas http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245486 Atlas Fri, 22 Feb 2008 19:35:15 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245486 someone who has sensitive data should not be walking down the street with a laptop turned on. This person needs to find a secure location to access from and never leave the laptop even for a minute. Similarly, you could find out their passwords with keyloggers (unless they are using keyfiles) but then what kind of person savvy enough to set up encryption would not know how to run an AV and firewall and not d/l pr0n exe's? This is a wake up call not to be too overconfident in encryption systems. Amen to that. I keep my truecrypt partition on a usb key and find that the fact that it is not always attached makes it more secure. cheers someone who has sensitive data should not be walking down the street with a laptop turned on. This person needs to find a secure location to access from and never leave the laptop even for a minute. Similarly, you could find out their passwords with keyloggers (unless they are using keyfiles) but then what kind of person savvy enough to set up encryption would not know how to run an AV and firewall and not d/l pr0n exe’s?

This is a wake up call not to be too overconfident in encryption systems. Amen to that. I keep my truecrypt partition on a usb key and find that the fact that it is not always attached makes it more secure.
cheers

]]> By: SupeS http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245409 SupeS Fri, 22 Feb 2008 17:55:03 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245409 NO Harddisk anymore Flashmemory is the future NO Harddisk anymore Flashmemory is the future

]]> By: (O)fer http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245364 (O)fer Fri, 22 Feb 2008 16:49:40 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245364 did they tried this on SECUSTAR products??? its the best disk encryption soft... no shts like truecrypt or other did they tried this on SECUSTAR products??? its the best disk encryption soft… no shts like truecrypt or other

]]> By: Ruff McGruff http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245357 Ruff McGruff Fri, 22 Feb 2008 16:42:28 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245357 truecrypt FTW, it does wat it says. more than enough security for a lot of people. and if there is information which is THAT THAT important, dont freakin carry it around in ur damn laptop. truecrypt FTW, it does wat it says. more than enough security for a lot of people. and if there is information which is THAT THAT important, dont freakin carry it around in ur damn laptop.

]]> By: .:. http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245337 .:. Fri, 22 Feb 2008 16:24:39 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245337 UPDATE: If you don’t see any copies of the pattern, possible explanations include (1) you have ECC (error-correcting) RAM, which the BIOS clears at boot; (2) your BIOS clears RAM at boot for another reason (try disabling the memory test or enabling “Quick Boot” mode); (3) your RAM’s retention time is too short to be noticeable at normal temperatures. In any case, your computer might still be vulnerable — an attacker could cool the RAM so that the data takes longer to decay and/or transfer the memory modules to a computer that doesn’t clear RAM at boot and read them there. link : http://citp.princeton.edu/memory/exp/ UPDATE:

If you don’t see any copies of the pattern, possible explanations include (1) you have ECC (error-correcting) RAM, which the BIOS clears at boot; (2) your BIOS clears RAM at boot for another reason (try disabling the memory test or enabling “Quick Boot” mode); (3) your RAM’s retention time is too short to be noticeable at normal temperatures. In any case, your computer might still be vulnerable — an attacker could cool the RAM so that the data takes longer to decay and/or transfer the memory modules to a computer that doesn’t clear RAM at boot and read them there.

link : http://citp.princeton.edu/memory/exp/

]]> By: .:. http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245332 .:. Fri, 22 Feb 2008 16:20:51 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245332 If you watch the Video then READ about it, it explains that, in the case of "truecrypt", you follow the INSTRUCTIONs and shutdown cleanly then it NOT a feasable attack... read "SAS" comment then go look at the truecrypt forums. the answer is 6 ;) If you watch the Video then READ about it, it explains that, in the case of “truecrypt”, you follow the INSTRUCTIONs and shutdown cleanly then it NOT a feasable attack…

read “SAS” comment then go look at the truecrypt forums.

the answer is 6 ;)

]]> By: rohit http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245330 rohit Fri, 22 Feb 2008 16:19:23 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245330 hjhjfgjfgjhfgjh yhj gjjfj fgj fg j hjhjfgjfgjhfgjh yhj gjjfj fgj fg j

]]> By: rohit http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245328 rohit Fri, 22 Feb 2008 16:18:14 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245328 gyjhfg gyjhfg

]]> By: rohit http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245320 rohit Fri, 22 Feb 2008 16:14:15 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245320 gyfjkgfhmjh gyfjkgfhmjh

]]> By: rohit http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245306 rohit Fri, 22 Feb 2008 16:06:26 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245306 it'l' be a very nice product it’l’ be a very nice product

]]> By: Nils http://www.rlslog.net/princeton-study-disk-encryption-not-safe/comment-page-1/#comment-245247 Nils Fri, 22 Feb 2008 15:32:24 +0000 http://www.rlslog.net/princeton-study-disk-encryption-not-safe/#comment-245247 A2DAK, the key for the encryption has to be stored anywhere, or no encryption can happen. And if it is stored, it can be read. To be safe, always turn the device of. A2DAK, the key for the encryption has to be stored anywhere, or no encryption can happen. And if it is stored, it can be read. To be safe, always turn the device of.

]]>