A way to break disk encription works on PC's and Mac's.

__________________
Soli Deo Gloria

John Schultz
Member, Riveroaks Reformed Presbyterian Church (PCA)
Germantown, TN

"The reason why we worship God in a slight way is because we do not see God in His glory"
Jeremiah Burroughs

Well that's nice to know. Reaffirms my decision to ecrypt my old hard drives with a sledgehammer.

It is a good reminder to shut down when not in use. Maybe a bit inconvenient, but good practice.

__________________
R.Vic Bottomly
Providence Reformed Baptist Church, Tacoma, WA

Click to get: Board Rules -- Signature Requirements -- Suggestions?

That's ok...when quantum computing is fully developed most current methodologies of cryptography will be useless anyway...except for the advances being made in quantum cryptography.

__________________
Larry Bray
Training for Elder - Reformed Presbyterian Church of Boothwyn, PCA
Boothwyn, PA - http://www.rpcb.org/

Free Online Reformed Seminary - http://www.tnars.net

-----------------------------------------------------
"The best Christian is still a poor Christian" - R.B. Kuiper

I believe "Loop AES" encryption uses key scrubbing and such to counteract this kind of attack.

I wonder if any encryption systems use SRAM instead of DRAM.

__________________
Larry Bray
Training for Elder - Reformed Presbyterian Church of Boothwyn, PCA
Boothwyn, PA - http://www.rpcb.org/

Free Online Reformed Seminary - http://www.tnars.net

-----------------------------------------------------
"The best Christian is still a poor Christian" - R.B. Kuiper

Once someone has your machine - they own it. It's just a matter of time. This only demonstrates that there are tools now that make it even easier and faster to crack your PC, even if your encrypt your your files.

If you merely have password protection, there are other tools that look for your encrypted password on your drive. This is a "known" location. Then they use cracking programs, some use"rainbow tables" and even some web based tools, that can break most passwords in a matter of hours - or at most a couple days.

However, if you encrypt a whole drive or directory, it isn't enough to crack the user password. That will only get access to the OS and any un-encrypt files. But with this method, they get your encryption key right out of your RAM. And they don't even need your user password first! Brilliant!

This will save the cracker hours and days of work. I'm really impressed on how easy their method is. However, the cracker needs to grab your machine while it's still hot, and work fast. And it seems that an easy solution would be to over-write the ram with random bits at shut down. I'd think this would be easy to do by software, and even better would be ram that does this automatically.

But the trend now is to make your ram more permanent so you PC will always stay semi-booted - with much of the OS permanently loaded. This will produce "instant-on" PCs. No more waiting for your PC to boot up. But it sounds like this will leave you even more vulnerable to this kind of attack. Someone could get your PC hours or days after you shut down, and steal vital information from it. Hmmm.

So just remember this rule, if someone steals your computer, they "own" it. Don't count on a user password to protect your PC if it's stolen. Disk encryption is still the best way to protect your data. Now you just need to find a what to wipe the ram when you shut down.

__________________
R. Anthony Coletti
Midway Presbyterian Church (PCA)
Jonesborough, TN
[i]et venite et arguite me dicit Dominus[/i]

You suppose taking out the RAM and wiping it real fast with a piece of staticy wool will do it?

I'm only half joking.

__________________
R.Vic Bottomly
Providence Reformed Baptist Church, Tacoma, WA

Click to get: Board Rules -- Signature Requirements -- Suggestions?

Run your OS and Store all your Files from a Thumb Drive....

They can get your computer if they want but they can get no information or data but only an empty shell without having the thumb drive....

__________________
Michael Daniels
Reformed, RPCNA
Denton, Maryland

[i][b]As For Me And My House, We Will Serve The Lord[/i][/b]

[SIZE="1"][I][FONT="Century Gothic"]Unum Deum in Trinitate: Pater, Filius, et Spiritus Sanctus [RIGHT]Sola scriptura - Sola gratia - Sola fide - Solus Christus - Soli Deo gloria - Solum psalterium - Lex talionis[/RIGHT][/FONT][/I][/SIZE]

I feel like i walked into a ultra secret spy site. Most computer user won't ever have anything worth breaking into a home or office with a can of liquid nitrogen, tear apart your computer, freeze your ram.. all within minutes of you walking out the door. Generally speaking if they have physical access to your computer it would be sooo much easier to put a keystroke logger on it an have it email you the results (you could use a usb flashdrive with a small OS on it as well), rather than perform some kind of mission impossible for your data. Your best security for this kind of attack is a mean dog who doesn't like strangers..

__________________
Josh Taylor
Verde Valley Reformed Chapel, OPC
Cottonwood, AZ

Another way to stay safe is just to not let folks know you have a computer. Get one of them new Apple laptops that fit in a manila envelope. When you're done using it, put it in an envelope and file it...nobody will be the wiser.

__________________
Larry Bray
Training for Elder - Reformed Presbyterian Church of Boothwyn, PCA
Boothwyn, PA - http://www.rpcb.org/

Free Online Reformed Seminary - http://www.tnars.net

-----------------------------------------------------
"The best Christian is still a poor Christian" - R.B. Kuiper

Here is what the site recommends for you to protect yourself from this exploit.

__________________
Josh Taylor
Verde Valley Reformed Chapel, OPC
Cottonwood, AZ