BitLocker encryption broken in less than 43 seconds with sub-$10 Raspberry Pi Pico — key can be sniffed when using an external TPM

Lee Duna@lemmy.nz · 1 year ago

BitLocker encryption broken in less than 43 seconds with sub-$10 Raspberry Pi Pico — key can be sniffed when using an external TPM

fmstrat@lemmy.nowsci.com · 1 year ago

Say it with me now: LUUUUUKS

baseless_discourse@mander.xyz · edit-2 4 months ago

deleted by creator

Phoenixz@lemmy.ca · 1 year ago

CPU communicates with TPM in plaintext

Because of course

Eufalconimorph@discuss.tchncs.de · 1 year ago

CPU doesn’t have any secure storage, so it can’t encrypt or authenticate comms to the TPM. The on-CPU fTPMs are the solution, the CPU then has the secure storage.

baseless_discourse@mander.xyz · edit-2 4 months ago

deleted by creator

baseless_discourse@mander.xyz · edit-2 4 months ago

deleted by creator

HelloHotel@lemm.ee · edit-2 1 year ago

I wondered why LUUUUUKS didnt use the TPM, why do i have to put my password in… this is absolutely why.

Edit: fixed spelling of LUUUUUKS

cooopsspace@infosec.pub · edit-2 1 year ago

Also yes you can, I wouldn’t recommend it though. Maybe in addition to your password though.

Wait until you see Dracut and Tang.

mlaga97@lemmy.mlaga97.space · 1 year ago

What exactly is the point of full disk encryption if the system auto-unlocks on boot?

rambling_lunatic@sh.itjust.works · 1 year ago

Protection against tampering, maybe?

Bad excuse, but that is the logic I’ve heard.