FrozenCache
- Type
- Slides
- Tags
- forensic
- Authors
- Juergen Pabel
- Event
- Chaos Communication Congress 27th (27C3) 2010
- Indexed on
- Mar 27, 2013
- URL
- http://events.ccc.de/congress/2010/Fahrplan/attachments/1786_FrozenCache.pdf
- File name
- 1786_FrozenCache.pdf
- File size
- 407.9 KB
- MD5
- 690a0c17b5a1b857062dbfb5b6447389
- SHA1
- a16347e68235a28307f3fbf46df838c3e4b1da26
Cold boot attacks are a major risk for the protection that Full-Disk-Encryption solutions provide. FrozenCache is a general-purpose solution to this attack for x86 based systems that employs a special CPU cache mode known as "Cache-as-RAM". Switching the CPU cache into a special mode forces data to held exclusively in the CPU cache and not to be written to the backing RAM locations, thus safeguarding data from being obtained from RAM by means of cold boot attacks. A Proof-of-Concept implementation for Linux will be demonstrated and implementation details discussed.
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
