Barney's Blog

Blog archive

Sleeping Ain't Always Safe

When I was a kid, I owned a wall hanging made by my grandfather that was inscribed with an old English evening prayer -- including "If I should die before I wake, I pray Thee, Lord, my Soul to take."

I treasured it, but it also scared the bejeepers out of me. I wanted to wake up.

Now, we have to worry about our computers either never waking up or waking up hacked.

The Electronic Frontier Foundation claims that encrypted disks can be, er, decrypted while the computer sleeps. BitLocker from Microsoft was cracked by EFF and Princeton University experts by finding passwords in RAM, which isn't flushed during sleep or hibernation.

Microsoft isn't the only vendor with this the problem; Apple has it, too!

Posted by Doug Barney on February 25, 2008 at 11:52 AM


Featured

  • The 2021 Microsoft Product Roadmap

    From Windows 10X to the next generation of Microsoft's application server products, here are the product milestones coming down the pipeline in 2021.

  • Microsoft Adds Data Loss Prevention Alerts to Compliance Toolbox

    The latest part of Microsoft's overall compliance tooling is its Data Loss Prevention Alerts Dashboard, now generally available.

  • 2021 Microsoft Conference Calendar: For Partners, IT Pros and Developers

    Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.

  • Microsoft Releases 'Staged Rollout' for Hybrid Active Directory

    Microsoft recently announced the general availability of a "staged rollout" feature in Azure Active Directory designed for organizations with "hybrid" environments.