Cold Boot Attack Utilities Released At HOPE Conference

Posted by Soulskill on Sunday July 20, 2008 @05:26AM from the shining-a-spotlight dept.

An anonymous reader writes "Jacob Appelbaum, one of the security researchers who worked on the cold boot attacks to recover encryption keys from memory even after reboot, has announced the release of the complete source code for the utilities at The Last HOPE in New York City. The hope (obligatory pun) is that the release of these tools will help to improve awareness of this attack vector and enable the development of countermeasures and mitigation techniques in both software and hardware. The full research paper (PDF) is also available."

1 of 113 comments (clear)

Min score:

Reason:

Sort:

Re:because the fix would have to be in-hardware by Minwee · 2008-07-20 06:01 · Score: 4, Insightful

Most server class machines have intrusion detection sensors which will trigger an alarm when the case is opened. They're hardly foolproof, but if you were concerned about this sort of attack then responding appropriately to a "Your Door Is Ajar" event would be a reasonable place to start.