Members
  • Total Members: 14176
  • Latest: toxxxa
Stats
  • Total Posts: 42868
  • Total Topics: 16077
  • Online Today: 2477
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)









Author Topic: Researchers release 'cold boot' attack utilities  (Read 2582 times)

0 Members and 1 Guest are viewing this topic.

Samker

  • SCF Administrator
  • *****
  • Posts: 7528
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Researchers release 'cold boot' attack utilities
« on: 22. July 2008., 09:01:44 »


The security researcher who demonstrated the 'cold boot' attack has released the source code for the hack. The attack, first demonstrated in February, uses a set of utilities to lift crypto keys from memory even after a reboot.

A boon for hackers and computer forensics experts alike, the approach created a means to circumvent disk encryption simply by powering off a target machine which has been left hibernating or screen-locked, and quickly re-booting it to an external hard drive loaded with customised software. The attack worked because DRAM chips used by modern computers retain data for seconds or even minutes after being powered down, contrary to popular opinion. Cooling the chips wasn't absolutely necessary but aided the process in some cases.
 

Once the data is recovered utilities are needed to make sense of the information and perform functions such as correcting errors caused by bit decay.

The approach was pioneered by researchers from the Electronic Frontier Foundation, Princeton University and Wind River. One of the researchers involved in the celebrated hack, Jacob Appelbaum, released source code for the utilities used for it at the Hackers on Planet Earth (HOPE) conference in New York last weekend. It's hoped the release of the utilities will spur the development of countermeasures as well as raising awareness about the risks posed by the original attack.

A research paper on the attack along with explanatory video and code for the utilities can all be found here: http://citp.princeton.edu/memory

News Source: The Register

Samker's Computer Forum - SCforum.info

Researchers release 'cold boot' attack utilities
« on: 22. July 2008., 09:01:44 »

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising