February 22, 2008
FileVault doesn’t necessarily make your data safe as houses
Posted Feb. 22, ’08, 8:45 AM PT by Dan Moren
Category | Security
You may think that if you use encryption software on your computer to keep your sensitive information secret and safe that you’re in good shape. And, from the average thief you probably are. But if you’re dealing with the kind of information that’s attractive to those with resources, a substantial loophole may allow your encryption to be bypassed in relatively short order, according to a Princeton University researcher.
See, even if the data’s encrypted on your computer’s hard drive, that information has to be decrypted at some point in order to be read: when it hits your computer’s RAM, it’s in all of its plaintext glory. If someone gets to your computer while it’s running or when it’s only been put to sleep, they can shut the computer off, reboot it from a portable hard drive, and rifle the contents of your memory. Even computer systems that wipe the memory on startup can apparently be overcome by using—I kid you not—compressed air, the same stuff you use to clean your keyboard, to cool the chips, slowing the speed at which the memory is erased.
So if you’re relying on technology like OS X’s FileVault or Vista’s BitLocker, just be aware that it’s not quite the foolproof theft solution that you might think. Cue paranoia…now.
5 Comments
Leave a comment
Recent Entries
About MacUser
MacUser is your source for news, info, and opinion about Apple, the Mac, and the iPod. Our dedicated team of bloggers covers everything that is relevant to Mac users — and, okay, some stuff that’s not quite relevant, but is still a lot of fun.
Subscribe/RSS
- Blog Posts
- Blog Comments
- Podcast (RSS) (iTunes)
Tip us off!
- Email: macuser [at] macuser [dot] com
Recent Comments 
- wesg on Happy Independence Day! (and nary a Jeff Goldblum in sight)
- Goobi on Skitch is updated. Skitch is awesome
- Donn on Microsoft offers iPods as search prize in Australia
- ssdfan on Solid state drives eat battery life, don't save it for later
- ssdfan on Solid state drives eat battery life, don't save it for later
- mark kren on Success! Firefox 3 sets world record for downloads
Categories
- Apple (187)
- Advertising (141)
- Events (217)
- Huh? (153)
- Humor (239)
- News (133)
- People (231)
- Rivals (353)
- Speculation (145)
- Steve Jobs (147)
- Stores (187)
- Apple TV (54)
- Business (394)
- Games (133)
- Geekery (423)
- Hardware (855)
- Accessories (59)
- Intel Macs (159)
- Ihnatko (18)
- Internet (398)
- Legal (201)
- MacUser (89)
- Money (156)
- Music (317)
- Podcasting (98)
- Photography (67)
- Security (217)
- Software (1415)
- Updates (488)
- Tips (338)
- Troubleshooting (173)
- Video (366)
- Windows (197)
- iPhone (180)
- iPod (561)
- iPod Accessories (89)
- iPod Software (57)
- iTunes (101)
- iTunes Store (395)
Archives
- July 2008 (26)
- June 2008 (171)
- May 2008 (185)
- April 2008 (234)
- March 2008 (217)
- February 2008 (215)
- January 2008 (239)
- December 2007 (169)
- November 2007 (164)
- October 2007 (187)
- September 2007 (167)
- August 2007 (195)
- July 2007 (152)
- June 2007 (223)
- May 2007 (243)
- April 2007 (286)
- March 2007 (288)
- February 2007 (250)
- January 2007 (266)
- December 2006 (244)
- November 2006 (293)
- October 2006 (307)
- September 2006 (250)
- August 2006 (268)
- July 2006 (288)
- June 2006 (293)
- May 2006 (297)
- April 2006 (351)
- March 2006 (366)
- February 2006 (110)
- January 2006 (107)
- December 2005 (23)
Mac Publishing Sites
Links
Yeah, but my MBP runs so hot I'm sure it cooks the bits right off the chips in moments.
Dan: Just check the checkbox labeled "Use secure virtual memory". This will use an encrypted VM file. Problem solved!
Nevermind. (I just read the linked article.) Read directly from the chips??? That's wacky.
I believe you are still pretty secure if you have enabled the firmware program which does not allow your computer to be restarted of another drive without a password. If the passwords are different should'nt you be immune to such an attack?
You seem to describe the data in RAM as vulnerable, the story suggests the entire hard drive is vulnerable because the key to decrypt it is likely in RAM.