A couple of days ago I posted a small guide to use encrypted disk images in Mac OS X instead of Apple’s FileVault feature. Disk encryption is the solution to store your data in a secure manner… I thought. You won’t believe this but a group of researchers developed an attack against disk encryption software. The problem is that the secret you have to enter to decrypt the data is stored in RAM (obviously). When you turn off your computer the data in RAM will fade. This will take seconds to minutes. The researchers have developed a small tool to capture the RAM contents to disk and hunt down the secret used to encrypt the data…

It doesn’t take a whole lot of exotic or hard-to-get equipment. Just a computer that is left behind for a while and some software. Most disk encryption products can be compromised this way. Really scary stuff. Maybe the encryption software should use the hash of your secret instead of the plain secret. That way you first have to find a word that yields the same hash the program found in memory. Here you can read all about the attack on disk encryption including a nice video that demonstrates the attack. For now, just to be secure, I will kill anybody within five meter distance from my computer… you’ve been warned.

Update: What is safe nowadays? Even GSM encryption can be broken in 30 seconds (at the cost of $100.000).

This entry was posted on Friday, February 22nd, 2008 at 18:35 and is filed under security, software, technology, tin-foil hat. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.