[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: the cold-boot attack

To: linux-crypto@xxxxxxxxxxxx, ml@xxxxxxxxxxxxx
Subject: Re: the cold-boot attack
From: Jacob Appelbaum <jacob@xxxxxxxxxxxxx>
Date: Thu, 21 Feb 2008 15:23:58 -0800
In-reply-to: <20080221231617.GC16333@tatooine.rebelbase.local>
List-archive: <http://mail.nl.linux.org/linux-crypto/>
List-help: <mailto:ecartis@nl.linux.org?Subject=help>
List-id: <linux-crypto.nl.linux.org>
List-owner: <mailto:ecartis-owner@nl.linux.org>
List-post: <mailto:linux-crypto@nl.linux.org>
List-software: Ecartis version 1.0.0
List-subscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=unsubscribe>
References: <841CA916-6F3A-40C5-A9CF-8BA0DF9B5D9B@nrao.edu> <47BDE546.1080503@appelbaum.net> <1203628964.47bdeba4ee0b7@mgtmail.com> <47BE021B.4040501@appelbaum.net> <20080221231617.GC16333@tatooine.rebelbase.local>
Sender: linux-crypto-bounce@xxxxxxxxxxxx
User-agent: Icedove 1.5.0.14pre (X11/20080208)

markus reichelt wrote:
> * Jacob Appelbaum <jacob@xxxxxxxxxxxxx> wrote:
> 
>> Our paper is clear.
> 
> Link?
> 

Hi Markus,

Here's our official paper distribution point. I suggest the youtube
video as well, it's pretty nicely done:
http://citp.princeton.edu/memory/

> As already stated numerious times, if theres root access (eg full
> access to a machine's memory, including a virtual machine) it's a
> piece of cake to get one's hands on the key. 

Our attack works even after a full power off of the system.

>Key scrubbing in
> loop-AES only slightly complicates the issue, but as it has been
> publicly proven to work to snatch ssh keypairs from memory, it's just
> emphasising an attack vector that exists by design. And all the other
> publicly known linux crypto implementations suffer from it.

Yes. Of course.

> 
> IIRC, key scrubbing has been implemented in loop-AES because some
> Gutmann paper mentioned possible key recovery from imprinted RAM
> patterns.

Yes. This isn't the same issue.

> 
> Please, before stating your claims be sure to clearly point out your
> attack vector.
> 

Feel free to read the paper and let us know what you think.

Regards,
Jacob Appelbaum

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/

Follow-Ups:
- Re: the cold-boot attack
  - From: markus reichelt

References:
- the cold-boot attack
  - From: Boyd Waters
- Re: the cold-boot attack
  - From: Jacob Appelbaum
- Re: the cold-boot attack
  - From: IT2 Stuart Blake Tener, USNR
- Re: the cold-boot attack
  - From: Jacob Appelbaum
- Re: the cold-boot attack
  - From: markus reichelt

Prev by Date: Re: the cold-boot attack
Next by Date: Re: the cold-boot attack
Previous by thread: Re: the cold-boot attack
Next by thread: Re: the cold-boot attack
Index(es):
- Date
- Thread