Re: [Fed-Talk] Drive Encryption - Cross Platform compatible
Re: [Fed-Talk] Drive Encryption - Cross Platform compatible
- Subject: Re: [Fed-Talk] Drive Encryption - Cross Platform compatible
- From: Amanda Walker <email@hidden>
- Date: Sun, 17 May 2009 12:09:20 -0400
On Sat, May 16, 2009 at 11:19 PM, Boyd Fletcher <email@hidden> wrote:
> way cool. but rather depressing ;)
>
> On May 14, 2009, at 11:16 AM, Losasso, Jonathan E IT3 CCG, N63 wrote:
>
>> Here is some food for though regarding COTS drive encryption (truecrypt,
>> filevault, dm-crypt, & bitlocker. Old news, but still applicable.
>>
>> http://citp.princeton.edu/memory/
I wouldn't call it depressing, just a reminder that security can only
be judged relative to a threat model.
TrueCrypt, FileVault, etc. are not designed to counter the threat
"someone grabs your laptop while it is running and pulls the RAM out."
They can give excellent protection to data at rest (i.e., with the
machine shut down) and moderate protection against
casual/opportunistic attacks while the machine is asleep or the screen
is locked, but they do not protect against physical intrusion into the
machine. If you face adversaries for which that is a real threat, you
should not rely solely on software for protection--and you should
probably not select hardware based on how easy it is to upgrade ;-).
--Amanda
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden