Microsoft’s Bitlocker & TPM encryption combo defeated with a $10 Raspberry Pi::The point of Microsoft’s Bitlocker security feature is to protect personal data stored locally on devices and particularly when those devices are lost or otherwise physically compromised. With Bi

  • Godort@lemm.ee
    link
    fedilink
    English
    arrow-up
    102
    arrow-down
    1
    ·
    9 months ago

    It should be noted that this attack was demonstrated on a nearly 10 year old laptop that has the TPM traces exposed on the motherboard.

    Most TPMs nowadays are built into the CPU which does not leave them vulnerable to this type of attack.

    • cheese_greater@lemmy.world
      link
      fedilink
      English
      arrow-up
      21
      arrow-down
      2
      ·
      edit-2
      9 months ago

      Its definitely sort or misleading but MS needs to really have its feet held to the fire when it comes to these things. It sort of pushes the narrative in the correct direction which is towards privacy AND security, not a half-ass balance where one or the other or both is compromised or is an illusion altogether

      The Outlook stuff has demonstrated how fundamentally irresponsible and unserious they are about their obligation to secure and regulate their own systems, they need all the bad press they can get so they are compelled to do betwr

      • Shadow@lemmy.ca
        link
        fedilink
        English
        arrow-up
        5
        ·
        edit-2
        9 months ago

        Because MS designed Lenovo motherboard for them and told them where to put the tpm debug pins? I think you’re casting blame at the wrong vendor here.

        Doesn’t matter how good the software is if the hardware vendor fucks up like that.

    • f4f4f4f4f4f4f4f4@lemmy.world
      link
      fedilink
      English
      arrow-up
      8
      ·
      9 months ago

      I get your joke, but it’s even cheaper than a “Raspberry Pi”. Pi Pico, one RP2040 chip, that’s basically RPi’s new version of a Teensy. I just installed one in my GameCube to defeat its “BIOS” and boot from micro SD card :P

      • andrewth09@lemmy.world
        link
        fedilink
        English
        arrow-up
        4
        ·
        9 months ago

        I just installed one in my GameCube to defeat its “BIOS” and boot from micro SD card :P

        Coolest thing I heard all day. Didn’t know that was a thing.

  • circuscritic@lemmy.ca
    link
    fedilink
    English
    arrow-up
    26
    ·
    9 months ago

    $10… not really in video. He had a custom PCB made so the pogo pins were on the board, all in one.

    Honestly, pretty awesome. Although as noted, this is for older boards without TPM integration in CPU.

    It can also be done with a logic analyzer.

    • Godort@lemm.ee
      link
      fedilink
      English
      arrow-up
      9
      ·
      9 months ago

      Correct. However, if you have a way to run a PowerShell command as an administrator, you can run a single cmdlet to get access to the bitlocker recovery key.

    • n2burns@lemmy.ca
      link
      fedilink
      English
      arrow-up
      9
      ·
      9 months ago

      Isn’t the whole point of BitLocker protection from direct access? When a computer is turned off, encryption should keep the data safe. Also when a computer is turned off, basically no remote vector is going to work. AFAIK, when the computer is on, the drive is mounted and BitLocker provides no additional protection over an unencrypted drive.

      • kadu@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        ·
        9 months ago

        Yes, you’re correct. It’s just that if somebody is got full access to your hardware, with no time limits and can just poke around your pcb, BitLocker is the least of your concerns. It should still not be flawed - but at that point, even Samsung’s Knox, Qualcomm’s memory protection and Apple’s Secure Enclave have failed in the past, allowing the tinkerer to extract decryption keys.

        It’s more realistic to expect BitLocker to protect your external hard drive in case I grab it and run away, rather than expecting your computer to be bullet proof in case I aprehend the entire device.

        But again, I do agree, this is a vulnerability and it’s an issue, though limited to people using an actual TPM module rather than the built in one in the CPU.

        • ryannathans@aussie.zone
          link
          fedilink
          English
          arrow-up
          1
          ·
          9 months ago

          Veracrypt drive encryption does not have the same problem, it would be secure even with physical access

          • kadu@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            ·
            9 months ago

            I don’t think a Veracrypt setup could use a hardware pairing for the decryption key, and also boot from an encrypted drive, though.

  • stevedidwhat_infosec@infosec.pub
    link
    fedilink
    English
    arrow-up
    11
    arrow-down
    1
    ·
    9 months ago

    Unsurprised. Physical security seems to be a lot tougher for the industry to “nail”

    Just look at this UEFI boot fail vuln/exploit. Crazy.

  • Optional@lemmy.world
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    1
    ·
    9 months ago

    Hey - hey member that time when Truecrypt was like, “Peace, we out. Use bitlocker. lol”

    When’s the new Truecrypt coming out? Yeah yeah Veracrypt, I know. It’s cool, its just not. I dunno.

    • PeterPoopshit@lemmy.world
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      9 months ago

      There probably will someday be a push to prevent common normal people from having access to computer systems that offer the user root or superuser access. “ThE aVeRaGe PeRsOn DoEsNt NeEd AdMiN pErMiSsIoNs” or “think of the children”. Ipads and surface pros will be allowed but something like a socket 1155 motherboard won’t.

      • Specal@lemmy.world
        link
        fedilink
        English
        arrow-up
        0
        arrow-down
        1
        ·
        9 months ago

        No one wants LGA1155 anymore anyway so it’s Gucci, my i7-2600 was far past it’s life span 5 years ago

          • Specal@lemmy.world
            link
            fedilink
            English
            arrow-up
            0
            arrow-down
            1
            ·
            9 months ago

            The IPC just isn’t good enough of those chips anymore, making them really inefficient. You’d be better off buying a modern celeron