Comments on: Disk encryption broken due cooled memory http://robert.penz.name/38/disk-encryption-broken-due-cooled-memory/ About Linux, IT security, tips and tricks and other stuff that comes into my mind Thu, 02 Feb 2012 19:57:21 +0000 hourly 1 http://wordpress.org/?v= By: admin http://robert.penz.name/38/disk-encryption-broken-due-cooled-memory/comment-page-1/#comment-27 admin Sat, 23 Feb 2008 00:44:45 +0000 http://robert.penz.name/38/disk-encryption-broken-due-cooled-memory/#comment-27 The question is, if TPM could help with a secure password storage. The question is, if TPM could help with a secure password storage.

]]> By: Markus http://robert.penz.name/38/disk-encryption-broken-due-cooled-memory/comment-page-1/#comment-26 Markus Sat, 23 Feb 2008 00:28:01 +0000 http://robert.penz.name/38/disk-encryption-broken-due-cooled-memory/#comment-26 A quite easy security improvement would be to overwrite the stored password when the computer is shut down, such that existing systems could at least limit the attack scenarios. But still this doesn't add any security enhancement for the online version. The only solution for the online case I can think of at the moment is the one you already mentioned. It could be integrated as a fixed device, such that removing it from the circuit would require more work and therefore soon become impractical. A quite easy security improvement would be to overwrite the stored password when the computer is shut down, such that existing systems could at least limit the attack scenarios.

But still this doesn’t add any security enhancement for the online version.
The only solution for the online case I can think of at the moment is the one you already mentioned. It could be integrated as a fixed device, such that removing it from the circuit would require more work and therefore soon become impractical.

]]>