Hi this is BitLockPickingLawyer here and today we’ll see how secure . . .
BitLocker encryption broken in less than 43 seconds with sub-$10 Raspberry Pi Pico — key can be sniffed when using an external TPM
Submitted 9 months ago by throws_lemy@lemmy.nz to technology@lemmy.world
Comments
Overgrowngoblin@lemmy.world 9 months ago
neutron@thelemmy.club 9 months ago
A click out of one… two is binding…
peopleproblems@lemmy.world 9 months ago
Very end of the article explains you need access to the TPM communication hardware, which no longer occurs external to Intel and And cpus
massive_bereavement@kbin.social 9 months ago
To *newer Intel and AMD cpus and only certain models.
There's a lot of current hardware that uses embedded TPMs. It also depends on the communication path between the CPU and the module, but chances are it will be clear text and in some, via LPC.
Rooter@lemmy.world 9 months ago
*pretty much all AMD and Intel cpus made after 2015, not sure how a decade is new.
SpaceMan9000@lemmy.world 9 months ago
Should be noted that if a password is asked to decrypt the drive it also doesn’t work.
amenotef@lemmy.world 9 months ago
So offline bitlocker drives
And online bitlocker drives used with AMD fTPM are excluded from this exploit?
tias@discuss.tchncs.de 9 months ago
I thought the point with the TPM was that the keys would be kept internally to the TPM at all times and that any data lanes would only be used for transferring payload. Why are they sending keys between the TPM and the CPU?
Squire1039@lemm.ee 9 months ago
There are some functions like that, like Passkey signing. For Bitlocker, the encryption/decryption key is transferred to the CPU (and RAM) in order for it to operate. The problem described here has been around for a while, but putting it on a key like that makes the attack method available to “everyone”. There has been a solution for a while too: 1) put in pre-boot Bitlocker PIN, and 2) use integrated TPM like the article mentions.
fmstrat@lemmy.nowsci.com 9 months ago
Say it with me now: LUUUUUKS
baseless_discourse@mander.xyz 9 months ago
LUKS is still vulnerable to this attack if you enable autodecrypt using TPM.
This attack is based on the vulnerability that the CPU and TPM communicates uses plain text. This attack is not new:
dolosgroup.io/…/from-stolen-laptop-to-inside-the-…
SPI is a communication protocol for embedded systems and is extremely common amongst virtually all hardware. Due to its simplicity, there is no encryption option for SPI. Any encryption must be handled by the devices themselves. At the time of this writing BitLocker does not utilize any encrypted communication features of the TPM 2.0 standard, which means any data coming out of the TPM is coming out in plaintext, including the decryption key for Windows
And apparently Linux is not doing too hot on this regard either:
As we can see, parameter encryption simply isn’t used in practice, and except for safeboot none of the solutions enforce PIN/MFA by default.
phoenixz@lemmy.ca 9 months ago
CPU communicates with TPM in plaintext
Because of course
HelloHotel@lemm.ee 9 months ago
I wondered why LUUUUKS didnt use the TPM, why do i have to put my password in… this is absolutely why.
cooopsspace@infosec.pub 9 months ago
Also yes you can, I wouldn’t recommend it though.
mlaga97@lemmy.mlaga97.space 9 months ago
What exactly is the point of full disk encryption if the system auto-unlocks on boot?
chairman@feddit.nl 9 months ago
Question: if I have an bitlocker encrypted SSD in a modern computer with embedded TPM, can I move this SSD to an old computer with external TPM to sniff the cod this way? Be gentle. I am dumb. Thanks.
SleepingTower@lemmy.world 9 months ago
“Sniff the cod” This is a typo right? I don’t know any better, but I had a good laugh.
chairman@feddit.nl 9 months ago
What about the salmon and the halibut? :-D
jmfwnsfw@lemmynsfw.com 9 months ago
Not unless you entered your recovery code to unlock it on the old computer with the external tpm.
Bitflip@lemmy.ml 9 months ago
Nope. As soon as you move the disk to your second system/TPM, you lose any ability to decrypt it at all.
Neon@lemmy.world 9 months ago
The Key is stored on the Internal TPM. Only it can unlock the SSD.
smileyhead@discuss.tchncs.de 9 months ago
Solution: Just encrypt it with a password.
BaroqueInMind@kbin.social 9 months ago
Bit locker is a password controlled drive encryption. Am I being dumb or are you seriously saying that?
tias@discuss.tchncs.de 9 months ago
I guess they mean use the password as part of the encryption key
Kraven_the_Hunter@lemmy.dbzer0.com 9 months ago
Yes.
Petter1@lemm.ee 9 months ago
Finally, we can install Linux on your corporate pc or grab some RAM from it 😂😂😂
massive_bereavement@kbin.social 9 months ago
It seems to me an evolution on this attack: https://arstechnica.com/gadgets/2021/08/how-to-go-from-stolen-pc-to-network-intrusion-in-30-minutes/
MagneticFusion@lemm.ee 9 months ago
[deleted]Shadow@lemmy.ca 9 months ago
You’re being downvoted because this is a hardware problem and not Microsoft’s fault.
Just look at the Xbox one mod chip scene and you’ll see MS can do security perfectly well.
refurbishedrefurbisher@lemmy.sdf.org 9 months ago
Yeah. I hate Microsoft as a company, and I hate how they inject advertising, inconsistent design, no good centralixed package manager (TBF, they’re fixing that with winget, but only kind of; not sure if there’s a way to add additional repositories), etc.
But they do have damn good security. After the OG Xbox became the legendary homebrew console that it did, Microsoft beefed up security massively with the Xbox 360’s software. What they didn’t do quite as well was beef up hardware security, although the last model of the Xbox 360 (Winchester) has yet to be hacked. The JTAG hack was patched with a firmware update, but then it was found that through a timed glitching attack, you could force memcmp to return true, and if the timing is off, you can reboot the console via glitcher chip or SMC if using RGH 3 and try again.
With the Xbox One, there was a priviledge escillation bug in Dev Mode that to this day has been pretty underutilized, but other than that, it’s been fairly rock solid. There is another point to why, though. Microsoft realised the power of homebrew, especially after Sony made the mistake of removing OtherOS from all PS3 models, and then it got hacked shortly after. So they included (sold you) a way to run UWP apps using a sandboxed environment called Dev Mode. This leaves less of a desire for hackers to attempt exploiting the console’s retail mode, since they have almost the same resources that games have (still weaker, though).
brbposting@sh.itjust.works 9 months ago
Don’t know anything about that scene, has it ever been cracked?
throws_lemy@lemmy.nz 9 months ago
You are not really wrong, TPM was designed by the Trusted Computing Group consisting of big tech companies like M$, IBM, AMD, Intel, Cisco and HP.
Rooter@lemmy.world 9 months ago
Lol, Tom’s hardware is allowed on lemmy? It’s like the fox news of the tech world.
Clickbait as usual.
VampyreOfNazareth@lemm.ee 9 months ago
Them government backdoors. Mkay trust us mkay
CyberSeeker@discuss.tchncs.de 9 months ago
When using an external TPM. Which next to no one does.
Shadow@lemmy.ca 9 months ago
Watch the video. It just means external to the CPU, not an external device.
They demo the attack on a Lenovo laptop in the first minute of the video.
Lazarus@kbin.social 9 months ago
Many systems still use discrete tpms. Just because the CPU has a virtual tpm function doesn’t mean it’s used
throws_lemy@lemmy.nz 9 months ago
fTPM has a bug, don’t know if it’s fixed
techspot.com/…/93684-amd-promises-fix-ftpm-issue-…
Veracrypt also doesn’t recommend using encryption that relies on TPMs
veracrypt.eu/en/FAQ.html
Let’s assume the attackers were law enforcers
Toes@ani.social 9 months ago
It’s fairly common in business devices before 8th gen Intel.
Shurimal@kbin.social 9 months ago
The MSI mini-PC-s for office/business use have separate TPM modules on their mobos. I wouldn't be surprised if other mfg-s do this too.