nortypig

Cold Boot Encryption Attack gets an explanation on Boing Boing TV.

Password Bird looks like an interesting way to come up with passwords. Don’t forget that there’s a lot of trust in getting a third party to do this so only do this if you’re comfortable. If you use it I take no responsibility for your security. But, still, its a neat idea.

Xeni Jardin from Boing Boing TV has a great example of a hacker (Pablos Holman) cheaply accessing RFID enabled credit cards - it cost him $8 for a reader on eBay. Watch this video! Don’t believe the RFID security hype - tomorrow this will only get easier.

On a side note, to the public sector manager last year who had a wild rant at me about RFID being old technology all I can say is dude stop writing reports and read them! And to the people sold that RFID is secure I’d put forward that I attended a lecture by Ken Sakamura 2 years ago where he said we won’t be on top of RFID for security and privacy issues for about 10 years. I do like RFID but its vulnerable and we need to accept that instead of letting credit card companies set us up for identity theft - all care and no responsibility.

This video from Princeton University on Cold Boot Attacks on Encryption Keys is a must see. They’ve been successfully getting hold of encryption keys by exploiting the Random Access Memory (RAM).