- security News Forums
- > Attack on Windows BitLocker
- > TPM + PIN + USB
Anony Mous, Anony Mous
(1 posting since 06 Dec 2009)
TPM + PIN + USB 06 December 2009 00:52
Normally BitLocker is protected by TPM + PIN, however, it is little
known that BitLocker can be protected by TPM + PIN + USB.
Enabling of TPM + PIN + USB protections requires command line entries
(and can be tricky to enable unless you’re super-familiar with the
BitLocker command line).
I believe that this TPM + PIN + USB method would not succeed in the
attack shown as the adversary won’t have access to something you hold
(the USB key). I guess, though, that a tool could be written to
extract the contents of that too.
Microsoft should enable TPM + PIN + USB use via the GUI to mitigate
against this attack.
- Threaded View
- Flat View
