Slashdot Mirror


Of Encrypted Hard Drives and "Evil Maids"

Schneier has a blog piece about Joanna Rutkowska's "evil maid" attack, demonstrated earlier this month against TrueCrypt. "The same kind of attack should work against any whole-disk encryption, including PGP Disk and BitLocker. ... [A] likely scenario is that you leave your encrypted computer in your hotel room when you go out to dinner, and the maid sneaks in and installs the hacked bootloader. ... [P]eople who encrypt their hard drives, or partitions on their hard drives, have to realize that the encryption gives them less protection than they probably believe. It protects against someone confiscating or stealing their computer and then trying to get at the data. It does not protect against an attacker who has access to your computer over a period of time during which you use it, too."

2 of 376 comments (clear)

  1. Re:Fine line between security and paranoia by will_die · · Score: -1, Flamebait

    It is more likly to be an Enemy List

  2. Re:Fine line between security and paranoia by ryanov · · Score: -1, Flamebait

    Well, at least now I'm reminded why I labeled you an idiot.

    Incidentally, bipartisan cooperation? When has any Democratic administration managed that even when they were being nice to the Republicans? We had 39 Republicans vote against a ban on gang rape, essentially, the other day.