Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Laptop - Full Disk Encryption? (Booting defeats FDE)

from [Ansgar -59cobalt- Wiechers] Network Security [Permanent Link]
Subject: Re: Laptop - Full Disk Encryption? (Booting defeats FDE)
Date: Wed, 24 Oct 2007 02:15:58 +0200 
On 2007-10-23 Bill Stout wrote:

How to defeat full disk encryption:  Boot up


Wow, you mean disk encryption won't protect from attack vectors it
wasn't designed to protect from in the first place? Big surprise here.
Not.

[...]

For protection of data on the computer _after_ it's running, you may
consider products that offer more granular file-level encryption like
Credant Technologies or Information Security Corp.  These products
encrypt what's important (user files and temp files), but allow for
standard support, backup and recovery practices.


For protection of data on the computer _after_ it's running, you have a
kernel which implements and enforces access controls and privileges.

Besides, how do those file-level encryption systems make sure every kind
of temporary data an application may create on the disk is encrypted?
How do they ensure no unencrypted user data is left after the encryption
system is put in place? How do they handle paged data? How do they
handle (read "ensure confidentiality of") the keys?

Regards
Ansgar Wiechers
-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Failover internet connections, and implementation..., jam
Next by Date:  Re: Failover internet connections, and implementation..., Larry Offley
Previous by Thread:  Re: Laptop - Full Disk Encryption? (Booting defeats FDE), Bill Stout
Next by Thread:  Bootable flash/USB/thumb drive, Bob Chekoudjian
Indexes:  [Date] [Thread] [Top] [All Lists]