Comment on Raspberry Pi Pico cracks BitLocker in under a minute
DoomBot5@lemmy.world 4 months agoIf you have physical access to the hardware, have spent weeks researching it and produced a custom solution specific to that board and revision, etc. Sure, the last step of the process is quick - but let’s not forget the time spent developing this solution.
That’s not what anyone means when they say quick. They’re talking from the moment the attempt is initiated until the time data is extracted. In this case countdown starts the moment you get access to the hardware.
thantik@lemmy.world 4 months ago
And the moment he got access to the hardware was weeks ago when he opened it up and started probing around for the right points to access.
DoomBot5@lemmy.world 4 months ago
That’s great and all, but he owned that hardware. You’re not developing hardware exploits on a target’s hardware, you do it on a copy of the target’s hardware.
That’s like claiming the NSA spent months breaking into your phone. In reality, they spent months developing exploits on the iPhones they bought and minutes breaking into your phone once they have it.
thantik@lemmy.world 4 months ago
And that says nothing about the fact that this hardware is old. The problem has already been fixed in modern hardware, where the TPM is internal to the CPU and doesn’t have external access points like this.
DoomBot5@lemmy.world 4 months ago
Whoops, looks like you relocated the goalposts somewhere else. Might want to move them back to where they were.