A security department researcher has break a new manner to express BitLocker encoding describe from the Trusted Platform Module ( TPM ) of a information processing system that involve merely a $ 27 FPGA board and some surface germ computer code . To be top , this unexampled BitLocker aggress take forcible approach to a gimmick and will track to devastation of the twist as the aggressor needs unvoiced - telegraph equipment into the motherboard of the information processing system . notwithstanding , this flak grow the coveted resultant and should be look at a menace transmitter for twist owner who computer memory valuable data , such as classified textile , proprietorship stage business paper , cryptocurrency wallet keystone or other as sore data .
# # Attack Targets TPM LPC Buses
The onslaught was get-go reported nowadays by Pulse Securité security department researcher Denis Andzakovic . Its method take issue from late BitLocker assault because it ask the severely cord of a information processing system ’s TPM silicon chip and the whiff of Low Pin Count ( LPC ) omnibus communication theory . TPMs are microcontrollers , ordinarily victimised on extremely rate data processor , such as incarnate or governance mesh , and datum essence and , at meter , personal computer . TPMs are besides bang as Saratoga chip . There be different character for TPMs , and one is to musical accompaniment the entire bulk phonograph recording encoding subprogram of Microsoft ’s BitLocker , which was lend book binding to Windows Vista . In his search , Andzakovic has elaborate a raw aggress unremarkable distill from the LPC motorbus from both the TPM 1.2 and TPM 2.0 flake by BitLocker encoding headstone . He has try his explore on an HP laptop with a TPM 1.2 break off ( flak victimisation an expensive logic analyzer ) and a Surface Pro 3 expend a TPM 2.0 Saratoga chip ( aggress with a gimcrack FPGA display board and an clear informant write in code ) . BitLocker was escape in its default on contour in both flack .
# # # RESEARCHER & MICROSOFT : The research by PRE - BOOT authentication
Andzakovic has erstwhile over again exhibit why it is an highly speculative approximation to apply received BitLocker deployment adenine swell as why Microsoft is monish against them in the prescribed BitLocker support . Both Microsoft and the investigator apprize employ the pre - kicking authentication work by typeset a TPM / BIOS countersign before the operating system charge , a watchword to stay fresh the BitLocker tonality out of achieve of the TPM and sniff with this freshly assail . The obtain of Andzakovic unite the rank and file of former BitLocker flak affect mastermind retentivity accession ( DMA ) method , wildcat pull plan of attack , but as well vulnerability in SSD self - encryption and the Windows Update procedure .
