Türpe, Sven ; Poller, Andreas ; Steffan, Jan ; Stotz, Jan-Peter ; Trukenmüller, Jan (2009)
Attacking the BitLocker Boot Process.
Konferenzveröffentlichung, Bibliographie
Kurzbeschreibung (Abstract)
We discuss five attack strategies against BitLocker, which target the way BitLocker is using the TPM sealing mechanism. BitLocker is a disk encryption feature included in some versions of Microsoft Windows. It represents a state-of-the-art design, enhanced with TPM support for improved security. We show that, under certain assumptions, a dedicated attacker can circumvent the protection and break confidentiality with limited effort. Our attacks neither exploit vulnerabilities in the encryption itself nor do they directly attack the TPM. They rather exploit sequences of actions that Trusted Computing fails to prevent, demonstrating limitations of the technology.
| Typ des Eintrags: | Konferenzveröffentlichung |
|---|---|
| Erschienen: | 2009 |
| Autor(en): | Türpe, Sven ; Poller, Andreas ; Steffan, Jan ; Stotz, Jan-Peter ; Trukenmüller, Jan |
| Art des Eintrags: | Bibliographie |
| Titel: | Attacking the BitLocker Boot Process |
| Sprache: | Deutsch |
| Publikationsjahr: | 2009 |
| Verlag: | Springer |
| Buchtitel: | International Conference on the Technical and Socio-economic Aspects of Trusted Computing (Trust 2009) |
| Band einer Reihe: | 5471 |
| Kurzbeschreibung (Abstract): | We discuss five attack strategies against BitLocker, which target the way BitLocker is using the TPM sealing mechanism. BitLocker is a disk encryption feature included in some versions of Microsoft Windows. It represents a state-of-the-art design, enhanced with TPM support for improved security. We show that, under certain assumptions, a dedicated attacker can circumvent the protection and break confidentiality with limited effort. Our attacks neither exploit vulnerabilities in the encryption itself nor do they directly attack the TPM. They rather exploit sequences of actions that Trusted Computing fails to prevent, demonstrating limitations of the technology. |
| Freie Schlagworte: | Secure Services |
| ID-Nummer: | TUD-CS-2009-0067 |
| Fachbereich(e)/-gebiet(e): | LOEWE > LOEWE-Zentren > CASED – Center for Advanced Security Research Darmstadt LOEWE > LOEWE-Zentren LOEWE |
| Hinterlegungsdatum: | 30 Dez 2016 20:23 |
| Letzte Änderung: | 17 Mai 2018 13:02 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum