TU Darmstadt / ULB / TUbiblio

Attacking the BitLocker Boot Process

Türpe, Sven and Poller, Andreas and Steffan, Jan and Stotz, Jan-Peter and Trukenmüller, Jan (2009):
Attacking the BitLocker Boot Process.
5471, In: International Conference on the Technical and Socio-economic Aspects of Trusted Computing (Trust 2009), Springer, pp. 183-196, [Conference or Workshop Item]

Abstract

We discuss five attack strategies against BitLocker, which target the way BitLocker is using the TPM sealing mechanism. BitLocker is a disk encryption feature included in some versions of Microsoft Windows. It represents a state-of-the-art design, enhanced with TPM support for improved security. We show that, under certain assumptions, a dedicated attacker can circumvent the protection and break confidentiality with limited effort. Our attacks neither exploit vulnerabilities in the encryption itself nor do they directly attack the TPM. They rather exploit sequences of actions that Trusted Computing fails to prevent, demonstrating limitations of the technology.

Item Type: Conference or Workshop Item
Erschienen: 2009
Creators: Türpe, Sven and Poller, Andreas and Steffan, Jan and Stotz, Jan-Peter and Trukenmüller, Jan
Title: Attacking the BitLocker Boot Process
Language: German
Abstract:

We discuss five attack strategies against BitLocker, which target the way BitLocker is using the TPM sealing mechanism. BitLocker is a disk encryption feature included in some versions of Microsoft Windows. It represents a state-of-the-art design, enhanced with TPM support for improved security. We show that, under certain assumptions, a dedicated attacker can circumvent the protection and break confidentiality with limited effort. Our attacks neither exploit vulnerabilities in the encryption itself nor do they directly attack the TPM. They rather exploit sequences of actions that Trusted Computing fails to prevent, demonstrating limitations of the technology.

Title of Book: International Conference on the Technical and Socio-economic Aspects of Trusted Computing (Trust 2009)
Volume: 5471
Publisher: Springer
Uncontrolled Keywords: Secure Services
Divisions: LOEWE > LOEWE-Zentren > CASED – Center for Advanced Security Research Darmstadt
LOEWE > LOEWE-Zentren
LOEWE
Date Deposited: 30 Dec 2016 20:23
Identification Number: TUD-CS-2009-0067
Export:
Suche nach Titel in: TUfind oder in Google
Send an inquiry Send an inquiry

Options (only for editors)

View Item View Item