|
|
BugTraq
RE: [Full-disclosure] Firewire Attack on Windows Vista Mar 08 2008 12:12PM Larry Seltzer (Larry larryseltzer com) (3 replies) Re: Firewire Attack on Windows Vista Mar 09 2008 04:27PM Stefan Kanthak (stefan kanthak nexgo de) (1 replies) Re: Firewire Attack on Windows Vista Mar 11 2008 12:51AM Steve Shockley (steve shockley shockley net) (1 replies) Re: [Full-disclosure] Firewire Attack on Windows Vista Mar 08 2008 06:32PM Tim (tim-security sentinelchicken org) (1 replies) RE: [Full-disclosure] Firewire Attack on Windows Vista Mar 08 2008 10:03PM Larry Seltzer (Larry larryseltzer com) (2 replies) Re: [Full-disclosure] Firewire Attack on Windows Vista Mar 08 2008 10:51PM Tim (tim-security sentinelchicken org) |
|
Privacy Statement |
>>> The funniest is using hibernate...
>>> Did you perchance read: http://www.eff.org/press/archives/2008/02/21-0
> ??
>
> Yeah, I made specific reference to that attack in my message. There's a
> big difference between sleep mode and hibernate mode. In hibernate the
> system is powered off. Even if the memory has some residual charge I'm
> sure it's far less reliable than with sleep.
>
> Everything I've seen in descriptions of that attack tells me they are
> unfairly conflating sleep and hibernate.
>
Hi,
I've been watching this thread for a while and I guess it's time to
chime in. You're mistaken in thinking that we're conflating sleep and
hibernate modes.
Furthermore, Microsoft's response of using two factor authentication is
silly. It doesn't actually stop our attacks. In certain circumstances,
it may shorten the window of attack for a specific type of user but it's
mostly irrelevant. Consider a mail server with an encrypted drive, no
proximity sensor or two factor authentication is going to help you. A
seizure will still result in someone getting the keys that are in memory
- unless you're using some sort of secure crypto co-processor (which no
one is).
Regards,
Jacob Appelbaum
[ reply ]