|
@danluu | |||||
|
How secure is hardware disk encryption?
"In order to to recover the data from a locked MX100 drive, we connect a JTAG debugging device. Then, we use it to modify the password validation routine in RAM so that it always validates successfully"
ieee-security.org/TC/SP2019/pape… pic.twitter.com/bfZOQ8ywFN
|
||||||
|
||||||
|
Dan Luu
@danluu
|
13. pro 2015. |
|
Want to write to your filesystem safely? No worries, the manpage has all the latest rumors danluu.com/file-consisten… pic.twitter.com/uhGU1LAM2w
|
||
|
|
||
|
Bernd Paysan🇪🇺🇨🇳❤️❎🤦🏼♂️
@BerndPaysan
|
20. stu |
|
Hard Disk Encryption 101: Always use the password as entropy to generate a key together with some stored salt. Use this to decrypt the master key.
|
||
|
|
||
|
John-Mark Gurney 🗑️🔥
@encthenet
|
20. stu |
|
Hard disk encryption 101: never use the built in disk encryption.
Always use the software disk encryption that comes with your OS as it's known to be secure, unlike the built in disk encryption which likely hasn't been audited for security.
|
||
|
|
||
|
bea🍕
@flamingspatula
|
20. stu |
|
me: gimme data
hdd: do you have the password
me: i already told it to the other guy i promise
hdd: hey cpu is that true
cpu: (incapacitated but holding a sign that says yes)
hdd: looks legit, heres the data
|
||
|
|
||
|
Kamil Choudhury
@kchoudhu
|
20. stu |
|
Aaaaand I'm out.
|
||
|
|
||
|
Lucas Coppio
@DeveloperCoppio
|
20. stu |
|
Hello @SwiftOnSecurity look here the hard disk encription technique 🤣
|
||
|
|
||
|
Stefan
@DigitalStefan
|
20. stu |
|
Wait a minute, there was a story a few months back where Bitlocker now does NOT trust hardware encryption because of poor implementations.
|
||
|
|
||
|
Kirils Solovjovs
@KirilsSolovjovs
|
21. stu |
|
Well now. That ain’t encryption, is it?
|
||
|
|
||
|
http
@SwissHttp
|
22. stu |
|
How old is that article? I remember that Bitlocker fixed that issue (to rely on hardware encryption) about a year ago.
|
||
|
|
||
|
Valerie D
@valeriedesu
|
20. stu |
|
Nice, that "to to" is actually in the source material
|
||
|
|
||