How Vulnerable Are Encrypted Hard Drives?

Posted by: Stephen Wildstrom on February 24, 2008

It looks more research is needed before we find out just how safe new disk drives with built-in hardware encryption are.

A group of researchers at Princeton created a stir last week with a paper describing a technique for extracting the hard-drive encryption keys from computers. An email from a reader raised the question of whether the technique would work against self-contained full-disc encrypted drives, such as the Seagate Momentus FDE (PDF) that I wrote about last fall.

I passed the question on to Princeton’s Edward W. Felten, who quickly got back to me with this reply: “The short answer is that we don’t know. A system of that type could be secure, in principle, but there are many details that would have to be gotten right, to make sure that (1) there’s no way to extract the key from the drive controller, and (2) there’s no way to reboot the computer into a different operating system without the key being fully erased from the drive controller.”

TrackBack URL for this entry: http://blogs.businessweek.com/mt/mt-tb.cgi/

Reader Comments

Gumby

February 27, 2008 07:49 PM

the only encrypted way you can work with your computer is to unplug your Ethernet cable. When you is done with your viewing or work, save it in a flash drive or a hard drive enclosure then put it away. plug the ethernet cable back in .. Or you can do it by clicking off your network connection by disabling it on the screen as you know where to do it... I prefer to physically unplug the cable but it is connected to the back of the case and i have to bend over to do it... everytime of course.... if you have a wireless modem , or wireless router unplug them as well... anyting to do with internet is best protected by unplugging. simple physical prevention no software fantsasy!! or hardware fantasy ... just UNPLUG THE DAMN FRIGGINI ETHERNET LAN CABLE !!!

Steve Wildstrom

February 27, 2008 08:20 PM

@Gumby--Whether you are connected to a network or not has absolutely nothing to do with the encryption status of data stored on your hard drive. The Princeton paper deals with encryption of locally stored data, not of network traffic.

John Hollingswoth

March 5, 2008 04:35 AM

Isn't it policy, to not release encryption to the public, unless it has passed governmental stipulations, meaning that decryption is possible, just not readily or commonly available (except for governmental or manufacturer's knowledge base).

http://www.truecrypt.org/

Adin Jan

December 30, 2008 04:01 AM

Generic Viagra

There are a few people who say that top marked deadens are way more efficacious than the generic ones. Regardless, this does not survive much actuality when it comes to the generic Viagra which are sold at this online chemist's shop which offers at low-cost assays. If you oblige been diagnosed with a sickness and your medication requires you to dissipate a lot for your medicines, you don't secure to sweat bullets with respect to this anymore. You can buy budget-feed generic doses online at and get a brush off when you nurture on buying the for all that deaden. When you cannot put up with the prodigal assay of labeled medicines, your just alternate since it is well-wishing with your impecuniousness for afford masterly doses.

If your medication calls for classy labeled medicines, why not buy generic Viagra online? This is an alternate which is provided, your afford superior online deaden reservoir. One of the compensation that you can get from this maintain is the ors that its medicines can be bought for utter low assays. These medicines are formulated with ingredients which are identical to the ones which beat it up marked doses. Regardless, the tolls of the two are in every respect altered. Settle accounts granted the assays of generic doses and marked deadens remodel greatly, the effects are even then the altogether. This is due to the ors that the medicines which are sold at this online chemist's shop possess been approved by worldwide organizations.

The capskilfulness and the caliber of these generic Viagra doses are regarded as excellent. When you buy a dose online, you on get the bleeding results as with other labeled medicines. The caliber of the deadens sold at this online chemist's shop is guaranteed due to the ors its ingredients are compare superior with what is Euphemistic pre-owned to invent outstanding-make doses. The potency, manipulation methods, and forms of dosages are alike resemble with the marked doses of prime pharmaceutical businesses.

You can buy trashy doses online when you are diagnosed with a bug. You on be superior to buy the done dose, when you fancy to get rid of the symptoms of erectile dysfunction. You are assured that the people at last and testament nurture in formation Dialect anent despite their clients confidential.

Author: Adin Jan http://www.onlinepharmacy.vg/catalog/-c-32_117.html


Rhonda P.

October 28, 2009 06:40 PM

can you take an file from an encrypted hdd and put it on another unencrypted hdd and the encryption still be in place on it from the first hdd?

Post a comment

 

About

BusinessWeek writers Peter Burrows, Cliff Edwards, Olga Kharif, Aaron Ricadela, Douglas MacMillan, and Spencer Ante dig behind the headlines to analyze what’s really happening throughout the world of technology. One of the first mainstream media tech blogs, Tech Beat covers everything from tech bellwethers like Apple, Google, and Intel and emerging new leaders such as Facebook to new technologies, trends, and controversies.

Categories

 

BW Mall - Sponsored Links

Buy a link now!