New article is up :-D Stealing encryption keys for bitlocker, for both TPM1.2 and TPM2.0 devices. Source code included ^_^https://pulsesecurity.co.nz/articles/TPM-sniffing …
Show this thread
-
APTs probably have software solution especially since bounty programs that act as defense contractors
A software solution is largely irrelevant, because if you can pwn the OS (which you'd need to to, say, flash the BIOS with malicious code that does not ensure TPM boot flow integrity) you can just steal the FVEK instead.
-
-
You could try to boot an alternate OS to do the pwning and then try to go back to the TPM flow with measured boot intact, but honestly that's too finicky and likely to screw up permanently to be worth it. Safer to just use a hardware attack at that point.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.