On CNET: Live blogging from today's Apple event
BNET Business Network:
BNET
TechRepublic
ZDNet
Step 9: Release the code

Step 9: Release the code
Applebaum, pictured here, says that the team of security researchers plans to freely release the utilities they developed so that other programmers can develop privacy-protecting countermeasures.

They seem to be operating on the theory that, after their demonstration of encryption key extraction, police and intelligence agencies will rush to develop their own memory forensics. A public release of "keyfind" and the memory-transfer program merely will level the playing field between open-source researchers and companies like Guidance Software (that sells EnCase forensics software used by the FBI and other police agencies).

Because we know police agencies are keenly interested in computer forensic techniques, that's not a bad assumption. As early as 1984, the FBI Laboratory began developing computer forensics tools.

They're also interested in ways to bypass encryption. In the Scarfo case, the U.S. government used a key logger to find a reputed mobster's PGP passphrase. More recently, the Drug Enforcement Administration obtained a court order allowing them to implant a key logger into a suspect's computer, and the Justice Department is trying to force a defendant to divulge his PGP passphrase.

  • Talkback
  • Most Recent of 17 Talkback(s)
Bit Locker
It seems to me that the problem resides in the TPM. I do not use it. I store my password on a memory stick whereas using TPM stores it in the RAM. If the password is not on the computer to begin with it can't be hacked.... (Read the rest)
Posted by: cobra96ds@... Posted on: 02/25/08 You are currently: Logged In | Log out
Supercooled memory? Eriamjh   | 02/21/08
Millions at stake in corporate espionage ... terry flores   | 02/21/08
re: back doors CobraA1   | 02/21/08
Clearing memory at reboot would not work. ye   | 02/22/08
RE: Supercooled memory? bfilipiak@...   | 02/22/08
A few things to note CobraA1   | 02/21/08
Careful there georgeou   | 02/21/08
hdiutil was simply used to show successful crack terry flores   | 02/21/08
RE: (Images: How to bypass FileVault, BitLocker security) d1g1tal_ph3r3t   | 02/21/08
RE: (Images: How to bypass FileVault, BitLocker security) riverab0@...   | 02/22/08
Addition riverab0@...   | 02/22/08
Cox CassidyJames   | 02/22/08
I would like to see this tried with Firmware locked duane@...   | 02/22/08
Info still unencrypted in RAM... robert.rohr@...   | 02/22/08
Bit Locker cobra96ds@...   | 02/25/08
Encyption Law wagonhitch5@...   | 02/22/08
This is freaky John Musbach   | 02/24/08

What do you think?

advertisement

More ZDNet Photo Galleries

  • Printers
  • 'Green' Font Cuts Costs and Saves Trees (BNET)
  • Three Ways to Save Paper (BNET)
  • CNET Reviews printer buying guide (CNET)
  • View all printers-tagged content on ZDNet
  • Plan B from Brother
  • It's the smarter way to work in color Our professional color ink-jet all-in-ones give you more choices, more features, and more value. Make the Smarter Choice. Learn More »
advertisement
Click Here