Re: TrueCrypt broken

---

• From: Xavier Roche <xroche@xxxxxxxxxxxxxxxxxxxxxx>
• Date: Fri, 09 Apr 2010 19:29:59 +0200

---

Matt Mahoney a écrit :

http://www.storagenewsletter.com/news/security/passware-kit-forensic
Any idea how this works?

According to the site's description, it works on a live PC with a truecrypt partition mounted, when the PC is "locked".

The technic claimed may exploit a firefiwre flaw (see for example http://www.hermann-uwe.de/blog/physical-memory-attacks-via-firewire-dma-part-1-overview-and-mitigation), and is supposed to be able to get the keys in the dumped memory.

However, the "password recovery algorithms" for encrypted files technic is a bit vague and lacks description. Dictionnary attack, maybe ?
.

---

• Follow-Ups:
  • Re: TrueCrypt broken
    • From: Anne Onime

• References:
  • TrueCrypt broken
    • From: Matt Mahoney

• Prev by Date: TrueCrypt broken
• Next by Date: Re: If we could factor large numbers quickly, how exactly does everything break?
• Previous by thread: TrueCrypt broken
• Next by thread: Re: TrueCrypt broken
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > sci.crypt  > 2010-04