[OSX-Users] Re: Filevault vulnerable to decryption attack...
Philip Boulain
prb at ecs.soton.ac.uk
Thu Feb 2 00:02:16 GMT 2012
On 01/02/2012 21:59, Chris Andrews wrote:
> http://www.appleinsider.com/articles/12/02/01/forensics_vendor_warns_mac_os_x_filevault_vulnerable_to_decryption.html
>
>
> tl;dr - shut your computer down if you really don't want your data
> decrypted because they're using live memory analysis.
This seems like a massive "um, duh" news article: if your encrypted
filesystem is currently mounted, the encryption key is held in memory.
And if you're root, you can probably scrobble through memory! Holy
the-completely-bleeding-obvious, Batman!
At most it's a one of these:
http://en.wikipedia.org/wiki/Cold_boot_attack
--
Phil
More information about the Osx-users
mailing list