Cryptographic key recovery from Linux memory dumps

Does dm-crypt and cryptoloop provide expected security when facing modern computer forensics techniques?

Torbjörn Pettersson

Video Player

Close

15

30

00:00

00:00 | 00:00

• None

Use Up/Down Arrow keys to increase or decrease volume.

1.00x

• 2.00x
• 1.50x
• 1.25x
• 1.00x
• 0.75x

• 65 min
• 2007-08-09
• 2009-09-28
• 64
• Fahrplan

Cryptoloop and dm-crypt are the two disk encryption solutions provided by the stock Linux kernel. This lecture will describe in detail how to find and reuse cryptoloop and dm-crypt keys from kernel memory.

Download

Related

B.A.T.M.A.N. - Better Approach to Mobil…

Camp Closing Event

State of the Onion

Linux Kernel Dumps

JTAG/Serial/FLASH/PCB Embedded Reverse …

CR215 - Das Chaos Communication Camp

B.A.T.M.A.N. - Better Approach to Mobil…

Camp Closing Event

State of the Onion

Linux Kernel Dumps

JTAG/Serial/FLASH/PCB Embedded Reverse …

CR215 - Das Chaos Communication Camp

B.A.T.M.A.N. - Better Approach to Mobil…

Camp Closing Event

State of the Onion

Linux Kernel Dumps

PrevNext

1

2

3

4

5

6

Tags