QUOTE (maanu @ Oct 5 2009, 09:38 AM)
last night when i started googling , i saw a post where a user said that he reverse engineered safe boot's encryption somehow ( i believe he meant de-crypt as you'r saying ) . but he did not share how .
I would rephrase that to:
QUOTE (fictional_maanu)
last night when i checked the first link
jaclaz gave on the thread, this one:
http://www.forensicfocus.com/index.php?nam...opic&t=3812i saw a post where a user said that he reverse engineered safe boot's encryption somehow ( i believe he meant de-crypt as you'r saying ) . but he did not share how .
And actually you are wrong.
What user
Edge reported was:
- that there was a small flaw in the safeboot version 4.2 that compromised the encryption scheme
- that there may be ways on v5 too
QUOTE
A little bit of reverse engineering on v5 can go a long way and on v4 a small flaw in SafeBoot logic can mitigate their entire security. I am not going to discuss on the forum how to reverse engineer or bypass their logic as I have no idea what legal ramifications would exits if I did.
i.e. that he supposedly has an actual way to bypass the encryption and/or to validate non-right credentials to unencrypt.
QUOTE (maanu @ Oct 5 2009, 09:38 AM)
but anyhow i could not find a solution to password protected hdd's yet but still im searching for it . i saw a commercial solution though .
Rest assured, there are NONE (if we speak "generically" about "password protected HD's".
There
may be some specific ones for a given specific encryption scheme or for a specific program, leveraging on a flaw on the encryption algorhitm or on a security hole in the program.
QUOTE (maanu @ Oct 5 2009, 09:38 AM)
and as far as encryption is concerned ,it seems it is dangerous when it comes to safe boot . i have seen posts where the users were asking help because they could not access there hdd's when windows got corrupt and they still had the safeboot login details .
thats why a plug in would be needed ?
Yes.
But the whole point is that lots of
morons inexperienced people encrypt their data for no real reason, have not a sound recovery plan, do not test accurately the features of the encryption programs they chose, they don't simulate a data failure (and recovery), they don't make "safe" copies of the data, thoughtlessly remove authentication servers/criteria/etc. and then go around crying that they cannot get their data back.
QUOTE (maanu @ Oct 5 2009, 09:38 AM)
why we dont have a script for it YET ?
I cannot say the reason, but you have to consider the following "tree of decisions":
Are you a criminal or however involved in illegal activities?- if yes, you may want to encrypt all your data, but you won't go around crying you lost it
- if no, you DON'T need to encrypt your data
Are you a politically involved person and you live in a country where you may be persecuted for your ideas?- if yes, you may want to encrypt all your data, but you won't go around crying you lost it
- if no, you DON'T need to encrypt your data
Are you working for any country secret service or counterspy organization?- if yes, you may want to encrypt all your data, but you won't go around crying you lost it
- if no, you DON'T need to encrypt your data
Are you working for a leading edge, technological or military involved industry where the theft of data might be a great problem?- if yes, you may want to encrypt all your data, but you won't go around crying you lost it
- if no, you DON'T need to encrypt your data
Are you a lawyer or member of a law firm or bank/financial institution where theprivacy of your customers and their data is a priority ?- if yes, you may want to encrypt all your data, but you won't go around crying you lost it
- if no, you DON'T need to encrypt your data
Are you in any way needing to protect actually confidential data and your customers trust you will never disclose such info?- if yes, you may want to encrypt all your data, but you won't go around crying you lost it
- if no, you DON'T need to encrypt your data
Are you 15 and you have a nosy little sister/brother?
- if yes, you may want to encrypt all your data, AND you will go all around the internet crying you lost it
- if no, you DON'T need to encrypt your data
Alternate answer:
- if yes, and you are young but not stoopid, you may want to encrypt all your data, AND either use a "good-enough" encryption algorithm (enough to prevent access to a 10 years lad) OR plan properly everything AND have prepared an emergency plan.
QUOTE (maanu @ Oct 5 2009, 09:38 AM)
by the way i was thinking that how CIA OR FBI are doing this stuff ? i mean decrypting or breaking the password protected hdd for forensic purposes ??
They could tell you, but they would also have to kill you afterwards...
More seriously, NO encryption scheme is "safe" in an absolute sense, it is only a problem on how many resources you can use on it and the amount of time you have at your disposal.
Governments have, besides technical means, legal ones (example):
http://www.out-law.com/page-8515JFYI, a few "historical" links to interesting things you might not be aware of:
http://www.sigpc.net/v1/n22.htmhttp://www.distributed.net/rc5/http://www.cdt.org/crypto/risks98/http://www.garykessler.net/library/crypto.htmlAnd some undesirable effects of encryption:
http://www.viruslist.com/en/weblog?weblogid=208187524Moral:
If you want to really keep data secret, DO NOT write it ANYWHERE.
The only safe is to store info in your head (provided you are not forgetful) and keep your big mouth shut.
An alternative, actually in practice much safer than plain cryptography is steganography:
http://en.wikipedia.org/wiki/Steganography(for limited amounts of data, of course)
jaclaz
Oct 4 2009, 03:48 PM
.
.
