lemmy.mlaga97.space
  • Communities
  • Create Post
  • Create Community
  • heart
    Support Lemmy
  • search
    Search
  • Login
  • Sign Up
Lee Duna@lemmy.nz to Technology@lemmy.worldEnglish · 1 year ago

BitLocker encryption broken in less than 43 seconds with sub-$10 Raspberry Pi Pico — key can be sniffed when using an external TPM

www.tomshardware.com

external-link
message-square
68
fedilink
0
external-link

BitLocker encryption broken in less than 43 seconds with sub-$10 Raspberry Pi Pico — key can be sniffed when using an external TPM

www.tomshardware.com

Lee Duna@lemmy.nz to Technology@lemmy.worldEnglish · 1 year ago
message-square
68
fedilink
BitLocker's reliance on a TPM for security is its own downfall in this specific exploit.
  • chairman@feddit.nl
    link
    fedilink
    English
    arrow-up
    0
    ·
    1 year ago

    Question: if I have an bitlocker encrypted SSD in a modern computer with embedded TPM, can I move this SSD to an old computer with external TPM to sniff the cod this way? Be gentle. I am dumb. Thanks.

    • jmfwnsfw@lemmynsfw.com
      link
      fedilink
      English
      arrow-up
      0
      ·
      1 year ago

      Not unless you entered your recovery code to unlock it on the old computer with the external tpm.

    • Bitflip@lemmy.ml
      link
      fedilink
      English
      arrow-up
      0
      ·
      1 year ago

      Nope. As soon as you move the disk to your second system/TPM, you lose any ability to decrypt it at all.

      • baseless_discourse@mander.xyz
        link
        fedilink
        English
        arrow-up
        0
        ·
        1 year ago

        unless you have the key?

        • Bitflip@lemmy.ml
          link
          fedilink
          English
          arrow-up
          0
          ·
          1 year ago

          The key is inside the TPM.

          • baseless_discourse@mander.xyz
            link
            fedilink
            English
            arrow-up
            0
            ·
            1 year ago

            For LUKS user set the key; for bitlocker, I believe the key is automatically uploaded to either your Microsoft account or you system admin’s account.

            • Bitflip@lemmy.ml
              link
              fedilink
              English
              arrow-up
              0
              ·
              1 year ago

              Sure LUKS will do what you tell it. Bitlocker will do what it wants and just use the TPM unless you jump through a bunch of group policy edits and such. But you are correct, I had forgotten it does give you the option to backup the key to a txt file during the installation or initial encryption process :)

    • Neon 🏳️‍🌈🇺🇦🇪🇺🏳️‍⚧️🇹🇼🇮🇱🏳️‍🌈@lemmy.world
      link
      fedilink
      English
      arrow-up
      0
      ·
      1 year ago

      The Key is stored on the Internal TPM. Only it can unlock the SSD.

    • SleepingTower@lemmy.world
      link
      fedilink
      English
      arrow-up
      0
      ·
      1 year ago

      “Sniff the cod” This is a typo right? I don’t know any better, but I had a good laugh.

      • chairman@feddit.nl
        link
        fedilink
        English
        arrow-up
        0
        ·
        1 year ago

        What about the salmon and the halibut? :-D

Technology@lemmy.world

technology@lemmy.world

Subscribe from Remote Instance

Create a post
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@lemmy.world

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots


  • @L4s@lemmy.world
  • @autotldr@lemmings.world
  • @PipedLinkBot@feddit.rocks
  • @wikibot@lemmy.world
Visibility: Public
globe

This community can be federated to other instances and be posted/commented in by their users.

  • 389 users / day
  • 1.96K users / week
  • 5.05K users / month
  • 13.2K users / 6 months
  • 0 local subscribers
  • 69.9K subscribers
  • 12.6K Posts
  • 398K Comments
  • Modlog
  • mods:
  • L3s@lemmy.world
  • enu@lemmy.world
  • Technopagan@lemmy.world
  • L4sBot@lemmy.world
  • L3s@hackingne.ws
  • L4s@hackingne.ws
  • BE: 0.19.5
  • Modlog
  • Instances
  • Docs
  • Code
  • join-lemmy.org