this post was submitted on 11 Feb 2024
384 points (93.2% liked)

Technology

59314 readers
4948 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Microsoft's Bitlocker & TPM encryption combo defeated with a $10 Raspberry Pi::The point of Microsoft's Bitlocker security feature is to protect personal data stored locally on devices and particularly when those devices are lost or otherwise physically compromised. With Bi

you are viewing a single comment's thread
view the rest of the comments
[–] LainTrain@lemmy.dbzer0.com -5 points 9 months ago (2 children)

Requires physical access. A non-story outside of cybersec academia/research

[–] Natanael@slrpnk.net 19 points 9 months ago (1 children)

Bitlocker's threat model is physical access, though. And it's 50% of TPM's threat model too.

[–] LainTrain@lemmy.dbzer0.com 1 points 9 months ago* (last edited 9 months ago)

Yeah which is why no one cares about either. The threat vector is usually not discussed and mostly ignored by non state-level actors in practice.

I do agree that it's fascinating. My master's degree thesis was on sourcing trust and eliminating various evil maid type attacks, including supply side targeted poisoned hardware aimed at state level.

[–] Netrunner@programming.dev 2 points 9 months ago

This is categorically false. Laptops are not a story but rather company property.