[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: the cold-boot attack - a paper tiger?

To: Phil <philtickle200@xxxxxxxxx>, Jacob Appelbaum <jacob@xxxxxxxxxxxxx>
Subject: Re: the cold-boot attack - a paper tiger?
From: Phil <philtickle200@xxxxxxxxx>
Date: Thu, 29 May 2008 04:41:21 -0700 (PDT)
Cc: Matthias Schniedermeyer <ms@xxxxxxx>, Peter_22@xxxxxx, linux-crypto@xxxxxxxxxxxx, jariruusu@xxxxxxxxxxxxxxxxxxxxx
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:Date:From:Subject:To:Cc:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=Ym2Xrb4kTnExLAOQljio98aTBLHi228aQPJ5IhXwlCRCUkNNeAAULsr3u7rwjczQQtHiGCe4Ry9scRYtDZadNFaNHhHGDXUVirwHrL+GF6LpwW+gcnAc2ubv58Zik/48wQ5UgFc+RYIuGh+lE4ceUw+dd/5/au8xHDCKH/p6o5w=;
List-archive: <http://mail.nl.linux.org/linux-crypto/>
List-help: <mailto:ecartis@nl.linux.org?Subject=help>
List-id: <linux-crypto.nl.linux.org>
List-owner: <mailto:ecartis-owner@nl.linux.org>
List-post: <mailto:linux-crypto@nl.linux.org>
List-software: Ecartis version 1.0.0
List-subscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=unsubscribe>
Sender: linux-crypto-bounce@xxxxxxxxxxxx

--- Phil <philtickle200@xxxxxxxxx> wrote:

> 
> --- Jacob Appelbaum <jacob@xxxxxxxxxxxxx> wrote:
> > 
> > Because loop-aes *is* vulnerable to our attacks.
> > 
> > The keying material is in memory when we mount our
> > attack. We were able
> > to reliably extract keys required to decrypt the
> > data on the disk.
> > 
> 
> So I am right in saying that quitting X and
> overwriting  free memory as root with a utility such
> as smem after pulling down the loop will prevent key
> recovery?
> 
PS:  If so, why doesn't Jari just overwrite the slab
of memory containing the keys when pulling down the
loop? (I previously assumed loop-aes did this).


      

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/

Follow-Ups:
- Re: the cold-boot attack - a paper tiger?
  - From: Matthias Schniedermeyer
- Re: the cold-boot attack - a paper tiger?
  - From: Peter_22

Prev by Date: Re: the cold-boot attack - a paper tiger?
Next by Date: Re: the cold-boot attack - a paper tiger?
Previous by thread: Re: the cold-boot attack - a paper tiger?
Next by thread: Re: the cold-boot attack - a paper tiger?
Index(es):
- Date
- Thread