Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: Cold boot - Guidance for users SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Cold boot - Guidance for users

As anticipated when we wrote the diary "in memory of hard disk encryption?" about the research from Princeton into the property of DRAM to continue to keep data for a short while without power, the disk encryption vendors are starting to react.

Users of e.g. laptops that contain sensitive data and use (disk) encryption to protect data need to be given guidance on how to use the tools provided to them. In order to allow you to give your users that guidance you need to know when the keys are effectively wiped.

If you know of vendor provided information on how they handle keys, please let us know. Vendors are welcome to provide the information too.

Product Guidance Safe on
sleep hibernate
PGP WDE Hibernation wipes the keys, sleep does not. NO YES
PGP Virtual Disk Keys are wiped when unmounting the image ? ?

If any information is incomplete, inaccurate etc, please do let us know as interpreting the provided press releases can be hard.

--
Swa Frantzen -- Gorilla Security

Swa

760 Posts
Feb 26th 2008

Sign Up for Free or Log In to start participating in the conversation!