plenty900@yahoo.com wrote:
> Turns out, DHS, which has been spying illegally for some years
> now, has found a way to read DRAM data *after powerdown* --
> presumably it would work after normal shutdown or sudden power
> loss.
>
> http://www.nytimes.com/2008/02/22/te...in&oref=slogin
There's a discussion running about that in the german NG
de.sci.electronics
It boiled down to the following: Most modern Motherboards have an
intrusion switch detector, some MoBos even have intrusion
sensors (LDR, Vibration Switch etc.).
They can trigger actions that go from a simple ACPI event, and
can go up to calling code, that has been installed through EFI
(on boards that have EFI).
Now, all you've to do is using those IDS and unmount all
encrypted volumes if such sensors get triggerd -- and wipe the
keys from memory afterwards. You can also use temperature
sensors, to detect a "chill attack".
And last but not least there's one use for TCPA in the end: One
of the goals of TCPA was/is, that the CPU can have the memory
encrypted transparently. The crypto stuff should happen on the
L1 cache level.
Wolfgang Draxinger
--
E-Mail address works, Jabber:
hexarith@jabber.org, ICQ: 134682867