Skip to main content
  1. Home
  2. Computing

Researchers Defeat HDD Encryption

Nick Mokey
By

While properly encrypted hard drives were thought to offer a challenge to even the most talented of hackers, a recent breakthrough has proven that even this extreme security measure possesses major vulnerabilities. On Thursday, a group of Princeton researchers revealed a creative exploit that allows common hard drive encryption software to be easily bypassed in minutes by anyone who has physical access to the computer.

While most new hacks and security vulnerabilities rely on software loopholes, the Princeton researchers actually exploited a property of computer hardware to snag encryption keys.  Since most encryption programs require users to enter their passwords only once at boot, they store an encryption key in RAM to decode the hard drive’s encrypted contents on the fly. Most software companies would not consider this a vulnerability, since the contents of DRAM are wiped clean without electricity, making the key seemingly impossible to steal.

Recommended Videos

But the Princeton researchers found that DRAM holds its contents for much longer without electricity than most people suspected, and developed a way to extend its life even further by freezing it with the spray from an upside-down can of air duster. When presented with a running but locked computer, researchers were able to preserve the memory with air duster, swap it to a different laptop, pull the encryption keys right out and read the encrypted drives.

Related

The team successfully cracked drives encoded by popular schemes including Microsoft Vista’s BitLocker and Mac OS X’s FileFault, along with dm-crypt and TrueCrypt. The only prospect for circumventing the Princeton attack procedure may be using an additional encryption string, which would be stored on a USB thumb drive or other removable media, and taken with the user when away from the laptop.

Editors' Recommendations

Nick Mokey
Nick Mokey
Managing Editor
As Digital Trends’ Managing Editor, Nick Mokey oversees an editorial team delivering definitive reviews, enlightening…
How to add and remove apps from the Dock on Mac
The MacBook Air on a white table.

One of the main interface elements of the macOS experience is the Dock. Located at the bottom of the screen by default, the Dock is your Mac or MacBook’s nerve center. It’s where all of your most used apps are located, and having the ability to just click an icon to launch a program is quite the convenience. But how do you customize the Dock to display the apps you love?

Read more
How to add and use text replacements on Mac
Lofree Flow low-profile mechanical keyboard on a 13-inch Apple MacBook Pro.

Think about the words and phrases on our computers that we type over and over again, without even thinking about it. Emails and site logins are just a few of these frequently keyed fields, but there are plenty others. Now what if we told you there was a neat shortcut on macOS that lets you automatically input repeated words? It’s a feature called text replacements, and it’s also available on iPhones and iPads.

Read more
How to force quit on a Mac
How to force quit on a mac

Did an application decide to freeze on you? Getting the spinning beachball of death on MacOS? Or are things just running a bit too slow for your liking? Then you'll need to know how to force quit on a Mac, allowing you to close out of unresponsive programs.

Apple gives you a few different options when it comes to force quitting on a Mac, and most of them take just a few seconds to execute. Keep in mind that force quitting an application can be risky, as the software won't ask you to save any files or progress. That means you'll want to be absolutely sure you can safely close the software without losing any unsaved work.

Read more