Nessa Admin
Number of posts : 7028 Age : 111 Life : Points : Mood : Registration date : 2007-07-20
| Subject: Blast of cold air can open computer to hackers Mon Feb 25, 2008 10:41 am | |
| New research shows how easily an encrypted hard drive can be defeated
Want to break into a computer's encrypted hard drive? Just blast the machine's memory chip with a burst of cold air.
That's the conclusion of new research out of Princeton University demonstrating a novel, low-tech way hackers can access even the most well-protected computers, provided they have physical access to the machines. The Princeton report shows how encryption, long considered a vital shield against hacker attacks, can be defeated by manipulating the way memory chips work. The researchers say the ease of their attack raises fears about the security of laptop computers increasingly used to store sensitive information, from personal banking data, to company trade secrets, to national security documents. Freezing a dynamic random access memory, or DRAM, chip, the most common type of memory chip in personal computers, causes it to retain data for minutes or even hours after the machine loses power, the report found. That data includes the keys to unlock encryption. Without freezing, the chip loses its contents within seconds.
Hackers can steal information stored in memory by rebooting the compromised machine with a simple program designed to copy the memory contents — before the computer has a chance to purge sensitive data, according to the study. Laptops left in hibernation or sleep mode, or simply not turned off at all, are the most vulnerable to the new type of attack. "These risks imply that disk encryption on laptops may do less good than widely believed," according to the report, which was published this week by researchers from Princeton, the Electronic Frontier Foundation digital rights group, and Wind River Systems software company. "Ultimately, it might become necessary to treat DRAM as untrusted, and to avoid storing sensitive confidential data there, but this will not be feasible until architectures are changed to give software a safe place to keep its keys." Researchers have known since the 1970s that cooled DRAM chips can retain their contents long after power to them is extinguished, but the researchers said they believe their study is the first security paper to focus on the phenomenon. National security agencies may also have been aware that the types of breaches outlined in the study are possible, the researchers said, but added they weren't able to find evidence of that in any publications. The
attacks were carried out by spraying an upside-down canister of multipurpose duster spray directly onto the memory chips, freezing them to minus 50 degrees Celsius (about minus 60 Fahrenheit.) One challenge faced by the researchers was the threat that booting the system will automatically overwrite some parts of the memory. To make sure the contents were retained, they used small, special-purpose programs known as memory-imaging tools, which can be loaded over a network connection or a USB device, to save images captured from the memory chip. The attacks even work when the DRAM chip is removed and transferred to a machine set up by the hacker. Special programs were then used to correct errors in the recovered memory contents and reconstruct the keys used for encryption. The researchers said their results suggest that "this faith in the strength of disk encryption may be misplaced," arguing that a moderately skilled attacker can bypass many widely used encryption products — including BitLocker, included with some versions of Windows Vista; Apple's FileVault; open-source TrueCrypt; and dm-crypt — if a laptop is stolen while it is powered on or suspended. "The use of encryption is not, by itself, necessarily an adequate defense, and data in stolen laptops may be compromised even when encryption is used," the researchers said. | |
|
Camulus VIP
Number of posts : 1281 Age : 65 Location : The Keystone State Points : Mood : Registration date : 2008-01-23
| Subject: Re: Blast of cold air can open computer to hackers Fri Mar 14, 2008 1:07 am | |
| Now that's a scary thing you'll want to happen to you.
Lucky for me I run a few windows washer programs before I shutdown to wipe the system clean of what's left in memory and all my recent activities on the machine.
| |
|
Guest Guest
| Subject: Re: Blast of cold air can open computer to hackers Fri Mar 14, 2008 2:01 pm | |
| Drats |
|
129joe VIP
Number of posts : 2240 Age : 58 Location : england Points : Mood : Registration date : 2008-01-02
| Subject: Re: Blast of cold air can open computer to hackers Fri Mar 14, 2008 8:27 pm | |
| But they still need actual physical access!
So keep your PC under wraps & you're safe. | |
|
ONECRUNCH Senior Member
Number of posts : 202 Age : 53 Location : Between Baltimore and DC Points : Mood : Registration date : 2007-10-25
| Subject: Re: Blast of cold air can open computer to hackers Mon Mar 17, 2008 9:56 pm | |
| Those duster cans are capable of amazing things. There are videos out there that highlight how to remove dents out of your car by spraying the duster cans upside down on them. | |
|
Colicab Established Member
Number of posts : 121 Age : 39 Location : Inside a loser's mind... Points : Registration date : 2007-11-02
| Subject: Re: Blast of cold air can open computer to hackers Wed Mar 26, 2008 1:22 am | |
| This is an old trick... although the USB stuffs being used are quite new | |
|
Skittles Super Moderator
Number of posts : 952 Age : 58 Location : Sweden Points : Mood : Registration date : 2008-03-08
| Subject: Re: Blast of cold air can open computer to hackers Wed Mar 26, 2008 2:11 am | |
| When I was managing two Family Entertainment Centers, I used those cans of air, upside down to spray on the carpet when someone spit out their gum on the floor. A nice quick squirt of that would freeze it, and a quick pount with the top of a screw driver handle or hammer head and it would crack and crumble and we could sweep the gum particles right up!
I loved that stuff. | |
|
129joe VIP
Number of posts : 2240 Age : 58 Location : england Points : Mood : Registration date : 2008-01-02
| Subject: Re: Blast of cold air can open computer to hackers Fri Apr 11, 2008 8:41 pm | |
| They sound very handy things to have, where can you get one? | |
|
Skittles Super Moderator
Number of posts : 952 Age : 58 Location : Sweden Points : Mood : Registration date : 2008-03-08
| Subject: Re: Blast of cold air can open computer to hackers Fri Apr 11, 2008 9:40 pm | |
| Most computer stores carry them. Altho I really haven't noticed them here. Then again I haven't really looked either. We used to have this wholesale store called Sam's Club in the USA. That is where I used to buy mine. But now I really should use it for my keyboard, but I haven't. When I bought them before, it was to blow out the mechs on our redemption arcade games that gave out tickets. The dust from the tickets would cover the sensors and really mess things out by causing the games to pay out wayyyyyy more than it should. Nice for the customers but bad for business. hehehe | |
|
129joe VIP
Number of posts : 2240 Age : 58 Location : england Points : Mood : Registration date : 2008-01-02
| Subject: Re: Blast of cold air can open computer to hackers Sat Apr 12, 2008 6:30 pm | |
| I'll try PC World over here. | |
|
Sponsored content
| Subject: Re: Blast of cold air can open computer to hackers | |
| |
|