On mySimon: Queen of the Prom Game
BNET Business Network:
BNET
TechRepublic
ZDNet
Step 9: Release the code

Step 9: Release the code
Applebaum, pictured here, says that the team of security researchers plans to freely release the utilities they developed so that other programmers can develop privacy-protecting countermeasures.

They seem to be operating on the theory that, after their demonstration of encryption key extraction, police and intelligence agencies will rush to develop their own memory forensics. A public release of "keyfind" and the memory-transfer program merely will level the playing field between open-source researchers and companies like Guidance Software (that sells EnCase forensics software used by the FBI and other police agencies).

Because we know police agencies are keenly interested in computer forensic techniques, that's not a bad assumption. As early as 1984, the FBI Laboratory began developing computer forensics tools.

They're also interested in ways to bypass encryption. In the Scarfo case, the U.S. government used a key logger to find a reputed mobster's PGP passphrase. More recently, the Drug Enforcement Administration obtained a court order allowing them to implant a key logger into a suspect's computer, and the Justice Department is trying to force a defendant to divulge his PGP passphrase.

  • Talkback
  • Most Recent of 17 Talkback(s)
Bit Locker
It seems to me that the problem resides in the TPM. I do not use it. I store my password on a memory stick whereas using TPM stores it in the RAM. If the password is not on the computer to begin with it can't be hacked.... (Read the rest)
Posted by: cobra96ds@... Posted on: 02/25/08 You are currently: a Guest | | Terms of Use
Supercooled memory?  Eriamjh | 02/21/08
Millions at stake in corporate espionage ...  terry flores | 02/21/08
re: back doors  CobraA1 | 02/21/08
Clearing memory at reboot would not work.  ye | 02/22/08
RE: Supercooled memory?  bfilipiak@... | 02/22/08
A few things to note  CobraA1 | 02/21/08
Careful there  georgeou | 02/21/08
hdiutil was simply used to show successful crack  terry flores | 02/21/08
RE: (Images: How to bypass FileVault, BitLocker security)  d1g1tal_ph3r3t | 02/21/08
RE: (Images: How to bypass FileVault, BitLocker security)  riverab0@... | 02/22/08
Addition  riverab0@... | 02/22/08
Cox  CassidyJames | 02/22/08
I would like to see this tried with Firmware locked  duane@... | 02/22/08
Info still unencrypted in RAM...  robert.rohr@... | 02/22/08
Bit Locker  cobra96ds@... | 02/25/08
Encyption Law  benjaminwright75205 | 02/22/08
This is freaky  John Musbach | 02/24/08

What do you think?

advertisement

More ZDNet Photo Galleries

  • Smart Tech Expert advice on innovations in healthcare and the green technologies that make it happen. Find out more
  • Smart Business Discussion and advice on management issues that revolve around making your world smarter and more useful. More Smart Advice
  • Smart People The best and worst moves in the management and strategy trenches. Learn More