BitLocker encryption broken in less than 43 seconds with sub-$10 Raspberry Pi Pico — key can be sniffed when using an external TPM

Lee Duna · 1 year ago

BitLocker encryption broken in less than 43 seconds with sub-$10 Raspberry Pi Pico — key can be sniffed when using an external TPM

fmstrat · 1 year ago

Say it with me now: LUUUUUKS

@baseless_discourse@mander.xyz · edit-2 5 months ago

deleted by creator

Phoenixz · 1 year ago

CPU communicates with TPM in plaintext

Because of course

@Eufalconimorph@discuss.tchncs.de · 1 year ago

CPU doesn’t have any secure storage, so it can’t encrypt or authenticate comms to the TPM. The on-CPU fTPMs are the solution, the CPU then has the secure storage.

@baseless_discourse@mander.xyz · edit-2 5 months ago

deleted by creator

@baseless_discourse@mander.xyz · edit-2 5 months ago

deleted by creator

@HelloHotel@lemm.ee · edit-2 1 year ago

I wondered why LUUUUUKS didnt use the TPM, why do i have to put my password in… this is absolutely why.

Edit: fixed spelling of LUUUUUKS

@cooopsspace@infosec.pub · edit-2 1 year ago

Also yes you can, I wouldn’t recommend it though. Maybe in addition to your password though.

Wait until you see Dracut and Tang.

@mlaga97@lemmy.mlaga97.space · 1 year ago

What exactly is the point of full disk encryption if the system auto-unlocks on boot?

@rambling_lunatic@sh.itjust.works · 1 year ago

Protection against tampering, maybe?

Bad excuse, but that is the logic I’ve heard.