This massive security hole should have the security conscious on their toes, and fast!
As data is retained for up to a minute after powerdown in some circumstances, the retained keys are easy pickings following a cold-boot.
BitUnlocker in action
Source :- The Register
This security hole is largely dependant on the DRAM you use.Word arrives from The Electronic Frontier Foundation that a crack team of researchers - including the Foundation's own Seth Schoen - have discovered a gaping security flaw in everyday disk encryption technologies, including Microsoft's BitLocker as well as TrueCrypt, dm-crypt, and Apple's FileVault....
...If a machine is screen-locked or left in sleep or hibernation mode, Schoen and his cohorts proclaim, an attacker can circumvent disk encryption simply by powering the machine down and quickly re-booting to an external hard drive.
As data is retained for up to a minute after powerdown in some circumstances, the retained keys are easy pickings following a cold-boot.
BitUnlocker in action
Source :- The Register
Last edited: