My Laptop is encrypted, Uhhh not anymore.

August 1, 2008

So with everyone losing and getting their laptops stolen, every organization under the sun is evaluating and looking at Data At Rest encryption typically AES if your smart, using Data Loss Prevention products. Basically it encrypts the entire hard drive, not just volumes, folders, and files like other products. Well cold boot attacks basically rip the encryption key right out of physical memory and then mount your hard drive and unencrypt the data so it can all be stolen. Wonderful. Of course these products should use multi-factor biometric and smart card based authentication at the preboot level which could conceivably prevent this, MAYBE. Im investigating….. McAfee Safeboot here I come! If you want to read up more on it and try out the code check out the research….



Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: