Re: Security Flaw in Popular Disk Encryption Technologies
- From: "Martin Laabs" <martin.laabs@xxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 26 Feb 2008 19:46:22 +0100
Hi,
Maybe someone could implement a memory section
that is overwritten by the bios after reboot.
Then all the sensitive keys could be stored there.
This would prevent an attack that just boots from
another media and dump the whole memory out of i.e.
an USB-stick.
Preventing the physical access to the memory modules
could be done with a light sensor or a simple switch
at the computer case. If you implement also a temperature-
sensor near the memory-modules you could prevent cooling
them down before removal. (You'd just overwrite the keys
if the temperature falls i.e. below 10°C)
Greets,
Martin L.
_______________________________________________
freebsd-hackers@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: Security Flaw in Popular Disk Encryption Technologies
- From: Oliver Fromme
- Re: Security Flaw in Popular Disk Encryption Technologies
- References:
- Security Flaw in Popular Disk Encryption Technologies
- From: Atom Smasher
- Re: Security Flaw in Popular Disk Encryption Technologies
- From: David E. Thiel
- Re: Security Flaw in Popular Disk Encryption Technologies
- From: Achim Patzner
- Re: Security Flaw in Popular Disk Encryption Technologies
- From: Uwe Doering
- Security Flaw in Popular Disk Encryption Technologies
- Prev by Date: Re: emulate an end-of-media
- Next by Date: Re: Zeroing sensitive memory chunks [Was: Security Flaw in Popular Disk Encryption Technologies]
- Previous by thread: Re: Security Flaw in Popular Disk Encryption Technologies
- Next by thread: Re: Security Flaw in Popular Disk Encryption Technologies
- Index(es):
Relevant Pages
|
|
