Slashdot Mirror


Vista For Forensic Investigators

Ant writes "SecurityFocus has a two-part article offering a high-level look at changes in Windows Vista that a computer forensic investigator needs to know about. Part 1 covers the different versions of Vista available and Vista's built-in encryption, backup, and system protection features. Part 2 continues with a look at typical user activities such as Web browser and email usage."

5 of 125 comments (clear)

  1. If they want to bust you, they will by heretic108 · · Score: 3, Insightful

    I see from TFA that they're shitting themselves at the prospect of widespread drive-level encryption. They console themselves with the fact that only the high-end Vista versions support BitLocker.

    But in the end, encryption offers only limited protection. If some well-resourced hostile authority wants to take you down, there's endless options for framing you up. For instance, they could mess with your ISP's logs to fabricate http hits to k1dd13 pr0n sites, or infect your box with a bot that hits such sites on your behalf, which will cause the hits without messing with the ISP's logs...

    --
    -- In the beginning was the WORD, and the WORD was UNSIGNED, and the main(){} was without form and void...
    1. Re:If they want to bust you, they will by nine-times · · Score: 3, Insightful

      I see from TFA that they're shitting themselves at the prospect of widespread drive-level encryption.

      Whenever it comes to these things, I find myself in a bit of a quandary. Of course I want various criminals to get busted, but these investigators are essentially relying on poor security to get their information. I generally want computers to have good security. I don't like the idea of people being able to see my personal info or browsing history, but I'm also not really hiding anything.

      oh well...

    2. Re:If they want to bust you, they will by Qzukk · · Score: 3, Insightful

      *mboverload is sad because he hears these arguments from people but doesn't know how to fight against it. Someone help.*

      "If you have nothing to hide, then you won't mind taking out a newspaper ad with your SSN, your DOB, your credit card numbers, your mother's maiden name, and your driver's license number. Either you have something to hide, or you'll quickly learn that you had something you should have kept hidden."

      --
      If I have been able to see further than others, it is because I bought a pair of binoculars.
  2. Re:No encryption by default by RedElf · · Score: 4, Insightful

    With Vista, the OS from MS that phones home more than any previous release, can we really trust it not to "Phone Home" the encryption keys of bitlocker once it's enabled?

    --
    You know, I have one simple request. And that is to have sharks with frickin' laser beams attached to their heads!
  3. Re:Oh n0es by Detritus · · Score: 4, Insightful
    See the Fifth Amendment.

    The defendant has no obligation to provide the prosecution with incriminating information.

    --
    Mea navis aericumbens anguillis abundat