Attacking the BitLocker Boot Process

Türpe, Sven; Poller, Andreas; Steffan, Jan; Stotz, Jan-Peter; Trukenmüller, Jan

doi:10.1007/978-3-642-00587-9_12

Cited by 21 publications

(8 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It is a block-based encryption system that works below the file system to provide transparent confidentiality to data stored [15]. Based on Türpe et al [16], BitLocker is vulnerable to different attacks that target how this encryption system uses the trusted platform module sealing mechanism. Apple's iOS prefer to use file-level encryption to secure its devices through an encryption hardware built into the device Direct Memory Access path between main memory and the flash memory.…”

Section: Confidential Storagementioning

confidence: 99%

“…Based on that, an Android file stored in device will be fetched by XTS-AES system and then successfully encrypted. Different data sizes (1,4,8,16 MB) need to be tested, and performance in each case will be measured. To trace and diagnose the problems occurring in the system during the experiments and file handling crashes, a debugging environment needs to be set.…”

Section: Stages Of Developmentmentioning

confidence: 99%

See 1 more Smart Citation

Efficient Android‐based storage encryption using multi‐core CPUs

Alomari

Samsudin

Ramli

et al. 2016

Security Comm Networks

View full text Add to dashboard Cite

The huge proliferation of mobile and handheld devices, such as tablets and Smartphone devices, has come with different threats to the sensitive data and personally identifiable information stored inside these devices. The most efficient way to ensure data protection is through encryption; however, it comes with great impact on these small gadgets, which suffer from limited resources. Majority of recent mobile devices are equipped with increasingly powerful multi-core processors that researchers can leverage in order to enhance data protection while maintaining proper device performance. In this paper, we introduce a parallel implementation for data encryption inside the storage of Android-based mobile devices. This work implements a multi-core design of different encryption ciphers, making use of the commodity multi-core CPUs available currently in new smart gadget devices, in order to enhance the performance inside these resource-limited devices. Ciphers XTS-AES, XTS-Twofish, and XTS-RC6 are used during the experiments; however, the main focus is given to XTS-AES because it is developed specifically for storage encryption. Parallel encryption experiments are conducted on a mobile device, and performance comparisons are presented. The parallel XTS-AES has shown a maximum performance speedup of 1.71, with 86% efficiency, faster than the serial counterpart, with higher encryption throughput in the device up to 8290 and 11 380 KB/s when using XTS-AES and XTS-RC6 ciphers, respectively. In addition, we performed comparison between mobile device and desktop machine using similar experimental setup. It shows that the performance of storage encryption in mobile devices still lags by more than 10 folds when compared with desktop environment.

show abstract

Section: Confidential Storagementioning

confidence: 99%

Section: Stages Of Developmentmentioning

confidence: 99%

Efficient Android‐based storage encryption using multi‐core CPUs

Alomari

Samsudin

Ramli

et al. 2016

Security Comm Networks

View full text Add to dashboard Cite

show abstract

“…In the digital domain, several security products, such as TrueCrypt 1 and BitLocker 2 provide encryption for the whole hard drive. These solutions assume the adversary does not have physical control of the laptop, because if the adversary has physical possession of the laptop, she can always successfully execute a number of attacks [14,15,16]. These approaches also seem to ignore the human element, or more precisely, induce performance overhead and decrease the usability of the laptop.…”

Section: Literature Overviewmentioning

confidence: 99%

Effectiveness of Physical, Social and Digital Mechanisms against Laptop Theft in Open Organizations

Dimkov

Pieters

Hartel

2010

2010 IEEE/ACM Int'l Conference on Green Computing and Communications &Amp; Int'l Conference on Cyber, Physical and Social Compu

View full text Add to dashboard Cite

Abstract-Organizations rely on physical, digital and social mechanisms to protect their IT systems. Of all IT systems, laptops are probably the most troublesome to protect, since they are easy to remove and conceal. When the thief has physical possession of the laptop, it is also difficult to protect the data inside. In this study, we look at the effectiveness of the security mechanisms against laptop theft in two universities. The study considers the physical and social protection of the laptops. We analyze the logs from laptop thefts in both universities and complement the results with penetration tests. The results from the study show that the effectiveness of security mechanisms from the physical domain is limited, and it depends mostly from the social domain. The study serves as a motivation to further investigate the analysis of the alignment of the mechanisms across all three security domains to protect the IT assets in an organization.

show abstract

“…The encryption keys can be derived from hibernation files or memory dump files. For example, while BitLocker may indeed protect against opportunistic stealing of a computer that is turned off at the time, there are several plausible scenarios for targeted attacks [65] [66]. There are many ways available to acquire the original encryption keys.…”

Section: (Ijacsa) International Journal Of Advanced Computer Science Andmentioning

confidence: 99%

New mechanism for Cloud Computing Storage Security

Mrabti¹,

Ammari²,

Kalam³

et al. 2016

ijacsa

View full text Add to dashboard Cite

Abstract-Cloud computing, often referred to as simply the cloud, appears as an emerging computing paradigm which promises to radically change the way computer applications and services are constructed, delivered, managed and finally guaranteed as dynamic computing environments for end users. The cloud is the delivery of on-demand computing resourceseverything from applications to data centers -over the Internet on a pay-for-use basis. The revolution of cloud computing has provided opportunities for research in all aspects of cloud computing. Despite the big progress in cloud computing technologies, funding concerns in cloud, security may limit a broader adoption. This paper presents a technique to tolerate both accidental and intentional faults, which is fragmentation-redundancy-scattering (FRS). The possibility to use the FRS technique as an intrusion tolerance one is investigated for providing secure and dependable storage in the cloud environment. Also a cloud computing security (CCS) based on the FRS technique is proposed to explore how this proposal can then be used via several scenarios. To demonstrate the robustness of the proposal, we formalize our design and we carry out a security as well as performance evaluations of the approach and we compare it with the classical model. The paper concludes by strongly suggesting future research proposals for the CCS framework.

show abstract

Attacking the BitLocker Boot Process

Cited by 21 publications

References 4 publications

Efficient Android‐based storage encryption using multi‐core CPUs

Efficient Android‐based storage encryption using multi‐core CPUs

Effectiveness of Physical, Social and Digital Mechanisms against Laptop Theft in Open Organizations

New mechanism for Cloud Computing Storage Security

Contact Info

Product

Resources

About