科技回声

Clever but useless. Cold boot attack does not work on RAM with DDR3+. Pretty much all new computers are safe. <a href="http://superuser.com/a/464396" rel="nofollow">http://superuser.com/a/464396</a>

Previous discussions: <a href="https://hn.algolia.com/?query=Tresor%20erlangen%20points%3E10&sort=byDate&dateRange=all&type=story&storyText=false&prefix=false&page=0" rel="nofollow">https://hn.algolia.com/?query=Tresor%20erlangen%20points%3E1...</a>

DMA attacks (tb, firewire, etc) also have to be prevented so nobody injects code to pop the registers

Pretty clever, but do intel CPUs guarantee that xmm regs are zeroed on boot?

Another implementation using ARM support for cache locking: <a href="http://research.microsoft.com/~ssaroiu/publications/asplos/2015/sentry.pdf" rel="nofollow">http://research.microsoft.com/~ssaroiu/publications/asplos/2...</a>

Ein wunderschönes Name!

Clever but useless. Cold boot attack does not work on RAM with DDR3+. Pretty much all new computers are safe. <a href="http://superuser.com/a/464396" rel="nofollow">http://superuser.com/a/464396</a>

DMA attacks (tb, firewire, etc) also have to be prevented so nobody injects code to pop the registers

Pretty clever, but do intel CPUs guarantee that xmm regs are zeroed on boot?

Ein wunderschönes Name!

Tresor – CPU-only AES implementation resistant to RAM cold-boot attacks (2011)

6 条评论

Tresor – CPU-only AES implementation resistant to RAM cold-boot attacks (2011)

6 条评论