Slashdot Mirror
Full Disk Encryption Hard For Law Enforcement To Crack
If you'd rather keep your data private, take heart: disk encryption is a lot harder to break than techno-thriller movies and TV shows make it out to be, to the chagrin of some branches of law enforcement.
MrSeb writes with word of a paper titled "The growing impact of full disk encryption on digital forensics" [abstract here to paywalled article] that illustrates just how difficult it is. According to the paper, co-authored by a member of US-CERT, "[T]here are three main problems with full disk encryption (FDE): First, evidence-gathering goons can turn off the computer (for transportation) without realizing it's encrypted, and thus can't get back at the data (unless the arrestee gives up his password, which he doesn't have to do); second, if the analysis team doesn't know that the disk is encrypted, it can waste hours trying to read something that's ultimately unreadable; and finally, in the case of hardware-level disk encryption, tampering with the device can trigger self-destruction of the data. The paper does go on to suggest some ways to ameliorate these issues, but ultimately the researchers aren't hopeful: 'Research is needed to develop new techniques and technology for breaking or bypassing full disk encryption.'"
I wish this was the case in the UK, any encryption keys have to be handed over when asked by the police or .Gov
well we [the industry] will be just happy selling encryption with the tagline: so secure - no one can break it - except your average McForensic dude with a software package you can torrent. See, secure!
CS majors know the time/space tradeoff, but they never get taught the 3rd, crucial, tradeoff of the set: comprehension!
http://imgs.xkcd.com/comics/security.png
Why are other peoples sig's always more witty ???
Comment removed based on user account deletion
In a rare moment, U2 said something wise. "A liar won't believe anyone else."
(unless the arrestee gives up his password, which he doesn't have to do);
In the UK he does. And people have been punished for not handing it over.
No shit, Sherlock...
My /home partition is encrypted with a 27 character password.
I've felt like it's not enough for a while enough, but apparently the police are a lot clumsier than I give them credit for.
(I'm not a criminal or anything, it's just that I'm paranoid.)
(If anyone knows of a utility that will clear my RAM on shutdown, I'd appreciate it...)
If the encryption should be absolutely safe, there has to be open source software, to be 100% sure that there is no back door. Or is every encryption technology reverse engineered to be able to say that no government idiot can type some cheat and decrypt all the data?
Still a better title than "Full Disk Encryption Hard For Law Enforcement To Cocaine".
So how are we to know that this isn't anti-FUD?
"Yes, Citizen, your full disk encryption is just too much for us to crack. I guess you're in the clear."
load "linux",8,1
Xkcd "comics" (I'm very hesitant to actually call them that) are never obligatory. In fact, we're all better off if you don't link to them. They just plain aren't funny or amusing or insightful, regardless of what your taste in humor is.
Many of them just make a semi-obscure academic, scientific or Internet cultural reference. There's not even any commentary, implied or expressed, about the thing or idea being referenced! The comic just makes the reference, and somehow that's supposed to be comical. Well, it isn't.
Many of the rest just rip off jokes or witty observations that have been floating around labs, colleges, and other academic or scientific institutions for decades now. They are not original in any way.
There are many truly funny web comics out there, written by very bright people who combine intellect and artistic skill in a remarkable way. Link to them instead of xkcd. Xkcd "comics" just aren't worthy of being viewed.
The encryption might be practically unbreakable but that doesn't help a lot. Around here police just break into homes to install hardware or software keyloggers. Sure, that may not be exactly legal for them to do, but they don't care because they know nothing will happen to them.
If you attract the interest of a sophisticated enough adversary, the FBI or NSA for instance, you're probably toast. And if your adversary isn't concerned with following the law, well your fingers (or the fingers of your family members) can be lopped off one at a time until you remember your passphrase. Plausible deniability is a better strategy.
http://news.cnet.com/8301-10784_3-9741357-7.html
Encrypt the ram as well :p
Lo and behold, for I am a sig!
I mean ... what's the point of encryption that your foes, police or otherwise, can bypass?
"Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
Should be easy for a 256-qubit quantum computer.
Now if I only knew how to make one.
Any simple phrase that's memorable to you with a minor variation in caps and 2-3 symbols. Like:
ItWasADark&AndstormYnigh%T! (or preferably something that's not a top-10 cliche).
Not very much less secure than a completely random phrase. The only way to brute-force it would be to take every potentially memorable phrase from every work of literature, try every cap combination and every placement of 2-3 random symbols, which is still impossibly hard. It is FAR, FAR better to use a long phrase like that than a short phrase of extremely random symbols.
What about a "password" that you tell police that then deletes everything in the encrypted space. So you have two passwords, one to decrypt everything for you and one that you give away when needed to delete everything but make it look like it isn't.
Unless the people using it are doing stupid things, like letting a running or hibernating laptop fall into the hands of law enforcement or using weak passwords. There are plenty of people that do these stupid things though, but getting a memory-image via FireWire or brute-forcing a weak password hardly counts as breaking the encryption. Hardware keyboard-sniffer also do not count. AFAIK there is not a single instance where law enforcement managed to break FDE when the user did not do stupid things.
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
You are in violation of the laws forbidding the manufacture, sale and possession of chilled prawnography.
Countries that respect and protect a right to free speech would not outlaw such a system, but unfortunately such countries are few and far between. Deniable encryption encryption works in theory, but in practice the existence of non-deniable encryption makes it hard for people to claim that they are innocent users of a deniable encryption system. While there are innocent uses of such a system (perhaps your business secrets are so valuable that being tortured for them is not beyond the realm of possibility) they are few and far between; deniable encryption is tool for protecting your data from a government, and for all their talk about China and Iran, most western governments are not interested in having citizens who can secure their communications and data from police investigations.
Palm trees and 8
What goes on inside a personal computer is rarely the illegal part, it's usually just going to be evidence of something illegal that happened outside of the computer. I think the effort would be better spent on finding the illegal act instead of hoping that Joe Terrorist happened to send an email to his mom about the bomb he's building.
"Research is needed to develop new techniques and technology for breaking or bypassing full disk encryption."
Fine. Go ahead.
That would lead to "better" crypto systems.
Mastering the English language is fucking easy: all you have to do is to put an f* word in every fucking sentence.
Perhaps a real lawyer should chime in here.
Palm trees and 8
While I currently do not run full disk encryption on my laptop and I have never done anything to warrant arrest, I have thought about full disk encryption. Especially in these days of a growing police state, it is not my job to make your job easier. If the news stories keep going the way they are, I suspect that within the year, I will simply migrate over with strong encryption and that will be that.
Because I do not like the increasingly adversarial and militarized role the police have been taking. I'm sure I'm not alone. While I do not wear tinfoil, the news events of late give me pause.
--
BMO - shiny side out.
It's legal if they have a warrant.
It government-backed policing agencies cannot bypass this, at least it shows (to some degree) that AES-256 doesn't have some fundamental flaw or "back-door" in its algorithm that was intentionally left undisclosed. Take some comfort in knowing that everyone who attempts to crack the archive (excluding the use of jail, torture, installing keyloggers, fining you millions in taxes that you never owed, etc) still has to take the brute-force/dictionary-based attacks. Here's an good example:
http://howsecureismypassword.net/
Use biometrics instead of a password.
Your system unlocks via your foreign friend's iris, which you get via his smartphone's camera.
Now, when the police want to get access to your computer, they have to try to extradite your friend. You can't give them a password because there is no password. The only way to unlock your system is if your friend puts his eye up to his smartphone's camera and you put your smartphone up to your computer's iris scanner. They'd have to figure out a way to compel your friend, who lives in a country that may not have extradition treaty with your particular tyrannical hellhole.
Yeah, I know it's inconvenient, but it would be worth it to frustrate the monsters who have seized power.
Of course, by that point they'd probably just use rendition to send you someplace where you'll be tortured, just for making them have to work for a living. US or UK, I don't think there's any line they won't cross. Not any more. There's no longer a pretense to anything like personal rights. Unless your name ends in "Inc." you just don't have rights any more.
You are welcome on my lawn.
But only when the keyholders are on the same team as you are AND where neither you anyone you care about will never be hurt by them having access to your data.
A common example:
Corporate data encrypted on company-owned computers used by honest employees.
Key escrow protects the company in case the employee gets hit by a car.
Key escrow in this case may be nothing more than the user's passwords written down on a piece of paper locked in a safe in the HR office.
When it comes to governments, which may by definition turn evil in the future if they are not currently evil, the "AND where neither you anyone you care about will never be hurt by them having access to your data" part of the test always fails. Therefore, this argument supporting key escrow in certain situations does not apply when the government may gain access to the keys.
It also doesn't apply when it comes to dishonest employees or employers either.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
For the full report, Google
filetype:pdf "The growing impact of full disk encryption on digital forensics"
Don't mess with The Phone Company. Piss them off and you'll be using two tin cans and a piece of string.
so I can't take your laptop and get customer SSN's or other data that others want.
Just practically impossible with current technology.
Within a few years the feds will have a few quantum computers available for cracking passwords on high-profile cases but not enough for 99% of cases.
Within 10-20 years after that any conventional (e.g. what most PCs today are capable of) encryption other than one-time-pads or the like will be breakable.
One time pads are by definition unbreakable and plausibly deniable if used correctly.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
(unless the arrestee gives up his password, which he doesn't have to do);
In the UK he does. And people have been punished for not handing it over.
I wonder, how can they establish if one individual doesn't want to give them the password or simply cannot because he does not remember it, or maybe he relied on a key stored in a file which was deleted already. Can the UK gov. punish someone in this situation ?
More so, there are documented cases of people that forget things temporarily or forever due to a trauma. Being arrested may actually be a very traumatizing experience.
I think they will need all ram chips and then will need to them in the right order as well.
...going blind sifting through the stacks of recorded media with large uncompressed video files (at least that's what they look like after the stego gets finished), and even if you could know which ones really have data in them, my custom Schneir-class modified-TwoFish 16384-bit crypto guarantees you'll NEVAR get my digital booty!
Key escrow protects the company in case the employee gets hit by a car.
If your company is reliant on files on a random employee's computer rather than hosted on a fault-tolerant server that's regularly backed up, you're probably fscked anyway.
Biometrics only prevents login, and lets your precious files unencrypted to be extracted fairly simply. (Do not even think of using biometrics to generate a useful-enough password.)
I wonder if the defendant can legally refuse to give the password. On one hand, there is a law against self-incrimination. But on the other hand during discovery the plaintiff subpoenas documents, even if they are inside a safe to be revealed. Are there any precedences for this in US courts?
sed -e 's/Chuck Norris/Rajnikant/g' joke > fact
If it means anything to anyone, Matthew Geiger is from CERT (cert.org) not US-CERT. There is actually a big difference - more credibility.
Encrypted drives do not, obviously, use the password to decode the files. They use the password to decode a key and use that to encode the files.
So I always thought it would be interested to have a computer that, on startup, wipes that part of the disk with 0s, sticking a copy somewhere else on the drive. (Which is not a security risk, because the other parts of the drives are, obviously, encrypted with that key, and you can't open box with a box cutter inside it.)
And during safe shutdown, it puts it back. Or have a program you have to run to put it back, then shutdown.
For safety purposes, you give a copy of the key to someone else for safekeeping. Bonus points if they're out of the country.
Then you leave your computer on, and the screen locked, at all times. Bonus points if you rig it to an alarm where if someone breaks in, it cuts the power. (Also have it do the same if someone inserts firewire or USB while the screen is locked.)
Now it doesn't matter how much you're ordered to comply with the police. They come in, cut the power to your computer, make a disk image...and you'll tell them the damn password all they want, but you are rather at a loss as to how they think that will work, considering the part of the drive with the key stored is has apparently been filled with 0s. (You'll need a lawyer able to explain that what they are asking cannot work.)
Now, like I said, you can lie and pretend you don't know what's going on...or you can wait until they get a court order to have you decrypt, and then tell them what's going on. By which point your friend has hopefully already destroyed the key.
And the joke is, even if you explain everything that happened, this is entirely legal. You have not destroyed any evidence, because the key was already missing from the unencrypted part of the drive when the warrant showed up. (Unlike some of the automated 'destroy data' traps that people try to come up with.) And you have cooperated fully, you literally cannot get to the data. And your friend didn't destroy evidence, because the search warrant was for your stuff, he can delete of his own files he wants until he is told otherwise.
If corporations are people, aren't stockholders guilty of slavery?
There is some conflicting case law on the matter so who knows? However what would work is "I can't recall my password." There's no way to prove that is false and working in IT I can tell you that people forget their passwords all the time (ALL the fucking time :P). So a person says "I can't recall my password," and there's not a lot that can be done.
You want to do someone in, and have access to their computer, a USB program that creates an encrypted partition would be enough to do one in. Proving one's innocence would probably be near impossible.
what about: power failure, UPS failure, hardware failure. Losing all your data sucks. This method would block keyloggers though, if they didn't know. Except modern drive recovery can restore the blanked out sector.
Hows about just using a decrypt like "G0Fukyourself"
Then even if tortured to the breaking point when you tell them the password they may just kill you and get it over with. Either way you can tell them and they will think you are just a shit - even though it is the real password - - - - - just tell them - - - - - go fuck yourself!
If bars don't serve drunk people, then McDonald's shouldn't serve fat people...
Here is the original article...
http://www.scribd.com/doc/73235083/The-growing-impact-of-full-disk-encryption-on-digital-forensics
Good.
"Research is needed to develop new techniques and technology for breaking or bypassing full disk encryption."
And, if they somehow manage that, research will be needed to develop new techniques and technology for creating even stronger encryption.
Filthy, filthy copyrapists!
There is a difference between:
-company fscked because data was lost on a single laptop hard drive
and
-pain in the ass that the latest work the employee did on the plane is now inaccessible because they can't produce their password
Key escrow is great in those situations, and I've had to use it before.
Grammer Nazis - I mod you "troll" unless you actually add something on-topic. Yes, I know I have mispellings in my sig.
The hidden volume is stored in what appears to be free space of the outer volume. Without you revealing the key to the hidden volume, there's no way to know whether the free space is actually free or not (it will appear to be filled with random gibberish, the same as the entire volume is when you first create it). Unless you can account for all of the space of the volume as part of *readable* files, you can't prove there's no hidden volume squirreled away in the "empty" part, and this problem applies recursively.
I have a disk with unpartitioned free space on it. It could very easily hold encrypted data and there's no way for me to prove that it doesn't.
Have every one use ARM processors then they will not have the processing performance capable of doing full disk encryption in a reasonable amount of time.
If corporations are people, aren't stockholders guilty of slavery?
DavidTC - nice sig. Along those lines, I thought this was good read: http://www.amazon.com/Unincorporated-Man-Sci-Essential-Books/dp/0765318997
This would not work for those middle-of-the-night surprise raids, but would work if you could get a 5- or even 1-minute warning; definitely works for airport crossings, etc.
Put a keyfile on a removable USB stick. It *looks like* that stick is acting as a physical key. Instead of typing a password, you direct TrueCrypt (or whichever other encryption program) to use that file. When law enforcement arrives, you get rid of the USB key and the drive is undecryptable.
The trick is that the keyfile is something easy for you to memorize, like some lines from Shakespeare or something. (If you like, insert your mother's maiden name before the 17th word to salt the text.) Law enforcement has no way to know that this is not a bunch of random characters, if they don't have the USB key.
404555974007725459910684486621289147856453481154 in hex is "You sank my Battleship?"
[GPG key in journal]
Mediafire: http://bit.ly/uCMxbf
This won't work. Each time a scanner reads the biometric data of a person (fingerprint, iris, etc) - you always get different data. This is caused by varying factors such as lighting, temperature, angle at which the eye or finger faces the scanner, and so on.
If you use the raw biometric data as an AES key - you will simply not be able to generate the same key again.
The data obtained from a biometric scanner are processed and compared with a known template (obtained when the person was enrolled into the system), the result is a number - the probability that the templates are identical. This is good enough for some purposes, but this is not suitable for data encryption: in the case of AES-256, you need 256 bits for the key and 256 bits for the IV (initialization vector). Flip a bit and kiss your data goodbye!
Biometrics can be an additional security factor - scan the iris, if there's a 95% match, go to the next phase. Typically, the next phase is to enter a password, which is used to decrypt the actual* encryption key. One can reverse engineer the system and make it bypass biometrics (jump directly to "next phase") - but no one can obtain the decryption key. No one, because that requires information not contained within the system itself.
If you rely exclusively on biometrics, it means that as soon as you perform the scan, if the templates match - you read the actual key from a database or some other location. In this case, the police can simply get access to the database and extract the key.
The thing to remember - biometrics: good for identification, not good for authentication.
* this key is randomly generated, to ensure it will be secure. A reasonable system will not encrypt the data directly with a person's password, because such passwords don't contain enough entropy. So, there is a distinction between "password" and "encryption key".
The saddest poem
http://www.scribd.com/doc/73235083/The-growing-impact-of-full-disk-encryption-on-digital-forensics
Good explanation thanks.
I have apparently seen too many movies where the super-spy has to bring the dead body up to the palm-reading plate so he can open the door and diffuse the nuke.
You are welcome on my lawn.
To ameliorate is to improve or make better. (verb)
An example of something that ameliorates is ibuprofen when used to help a headache.
unless the arrestee gives up his password, which he doesn't have to do
Coercive detention, anyone? Maybe not an option in the US, fifth amendment and all, although -- because of the very nature of common law -- that's a matter of interpretation, but certainly in most civil law systems (e.g. continental Europe).
Wouldn't geeks moving entropy around online also be a PITA to the RIAA enforcers? If lots of people exchange song or movie sized chunks of /dev/random, then you have plausible deniability.
Third Career: Tree Farmer Second Career: Computer Geek First Career: Teacher, Outdoor Instructor, Photographer.
Especially ones using Windows, so every one of their employees is at risk of being required to give up the truecrypt password for the hidden partition that they didn't create. Not a desirable state of affairs, either for the police or for the employee...
--dave
davecb@spamcop.net
Using my home desktop as an example, the typical law enforcement scenario would be the police executing a warrant and confiscating all the hardware in my house. First, if I'm not at my machine, the most sensitive data should not be available. RAM can be removed from a machine and read. I think there's a minute or two before the data is impossible to read. So any encryption keys loaded in RAM are vulnerable. I've seen reference to some neat systems which store keys in unused debug registers in the CPU. Kinda neat, but having the data dismounted when you lock/leave your machine is a pretty close 2nd.
Rather than a simple password-based scheme, I would have a remote server anonymously store the key. Your machine would create a secure connection to the key store server. You would request they value (encryption key) corresponding to some key. If the key is not requested for some period of time, it is destroyed. I have no idea how much time would exist between being arrested and being compelled to reveal a key. But given that you should have time to consult with a lawyer at the very least, you should be able to determine some period of time where the key is destroyed prior to you being required to supply the password. So, through no lack of cooperation on your part, the data is destroyed. And that's especially true if you are in prison with no ability to extend the timeout. I can't imagine why this scheme would be illegal to configure. As such, I also can't imagine how it would be obstruction of justice for the key to automatically self-destruct.
There are a ton of ways to improve on the particulars of that scheme to make it more secure and less prone to failure. I just wanted to be brief so I kept it simple. Ever since taking a coding theory course in school, I've loved the academics of encryption. And as a bit of a psychology/sociology/justice/politics nerd, I find these sorts of clashes between encryption and the real world incredibly fascinating.
But as far as justice goes, my views are to make things which should be illegal as difficult/impossible as you can in the first place. It always blows my mind how easily stolen hardware can be resold and used, break-ins can go unsolved, people can have no medical coverage, chronic speeders/drinkers not lose their license, unlicensed drivers use a car, etc. What so many call a "police state," I wish we had. I'm sick of how easy it is to abuse the system. And that goes for those abusing it from the top just as much as those examples at the bottom. Stealing an election or a billion dollars should be impossible too :)
I view the concept of sending someone to prison as torture in order to extract a password; and torture is a violation of basic human rights. (I live in the UK by the way.)
I use TrueCrypt to store my bank details and other important information (passwords, etc.) (Though I have been meaning to getting around to hiding my collection of hentai artwork seeing as "drawings are people too." *rolls eyes*)
That said, with files you can at least specify key files that must be used in conjunction with a password to view the contents of a standard/hidden file partition.
And while I don't want to give anyone ideas on how they could utilize this for nefarious purposes (terrorism, etc.), what's stopping people storing these files on Micro SD cards?; if the Police raid your place you could at least swallow the damn thing. (Though if you did this frequently it would probably put a strain on your wallet...)
Claim to have purchased a used drive at a previous point in time and that you yourself was trying to "decrypt" it on your system? This would be based on the premise that they couldn't truly prove that the encrypted drive or system wasn't purchased second hand. In other words, this would be a variation on the idea that the government would have to "prove" unequivocally that you do know the password for a encrypted drive.
I've read quite a few of the comments and I haven't really seen this idea brought up.
I don't get why the police forensics should not have access to a hard drive data when they have a warrant.
What's next, we should fight against the police right to enter a home with a warrant?
Seriously, people are fine with police carrying guns, but they should not have access to a hard drive because they could misuse the power?
I'd rather fight for sound rules on delivering warrants, and efficient checks on abuse of power.
Considering the goons they seem to hire to beat down the occupy hippy students, I'm surprised the techs the hire are able to mash out a paragraph on a keyboard, let alone break crypto.
Besides, they are probably too busy playing Madden 12.