Re: [Fed-Talk] Drive Encryption - Cross Platform compatible
Re: [Fed-Talk] Drive Encryption - Cross Platform compatible
- Subject: Re: [Fed-Talk] Drive Encryption - Cross Platform compatible
- From: Boyd Fletcher <email@hidden>
- Date: Sun, 17 May 2009 15:56:13 -0400
depressing because there is very little practically you can do about
the attack short of bios passwords to prevent booting off a CDROM/USB
and soldered memory.
ironically this makes the case for moving back towards soldered memory
on motherboards.
as they showed this is a very trivial attack and since MacOS, Vista,
and Win7 all sleep/hibernate well, more and more people just sleep
their laptops.
So for a federal computer security standpoint, i wonder if we should
extend the current DAR policy to also include *never* putting your
laptops to sleep.
boyd
On May 17, 2009, at 12:09 PM, Amanda Walker wrote:
On Sat, May 16, 2009 at 11:19 PM, Boyd Fletcher <email@hidden
> wrote:
way cool. but rather depressing ;)
On May 14, 2009, at 11:16 AM, Losasso, Jonathan E IT3 CCG, N63 wrote:
Here is some food for though regarding COTS drive encryption
(truecrypt,
filevault, dm-crypt, & bitlocker. Old news, but still applicable.
http://citp.princeton.edu/memory/
I wouldn't call it depressing, just a reminder that security can only
be judged relative to a threat model.
TrueCrypt, FileVault, etc. are not designed to counter the threat
"someone grabs your laptop while it is running and pulls the RAM out."
They can give excellent protection to data at rest (i.e., with the
machine shut down) and moderate protection against
casual/opportunistic attacks while the machine is asleep or the screen
is locked, but they do not protect against physical intrusion into the
machine. If you face adversaries for which that is a real threat, you
should not rely solely on software for protection--and you should
probably not select hardware based on how easy it is to upgrade ;-).
--Amanda
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden