Better think again. This article describes a hack where the memory of a computer that has just been rebooted can be read, passwords harvested, and subsequently hacked. It specifically mentions Microsoft’s BitLocker and Linux’s dm-crypt as susceptible to this hack. If we as IT managers think our wandering notebook computers are protected, this article is a wake up call. Or as the article quotes, “Though we discuss several strategies for partially mitigating these risks, we know of no simple remedy that would eliminate them” (¶ 6).

— Sawyer, J. H. (2008, February 25). The Crack in Whole-Disk Encryption. Dark Reading. http://www.darkreading.com/blog.asp?blog_sectionid=447&doc_id=146727

Advertisements