Tuesday, 13 November, 2018

Major SSD security flaw lets attackers bypass encryption

Flaws in self-encrypting SSDs let attackers bypass disk encryption Hardware-based disk encryption can be bypassed in certain SSDs
Katie Ramirez | 07 November, 2018, 18:11

When using BitLocker to encrypt a disk in Windows, if the operating system detects a SSD drive with hardware encryption, it will automatically default to using it.

Users could set a custom password for accessing the encrypted data.

Carlo Meijer and Bernard van Gastel of Radboud University, Netherlands, detailed in their paper [pdf] how techniques known to be used by the US National Security Agency (NSA) can get around encryption that looks strong and impenetrable on paper.

This security flaw is only present in devices with hardware-based encryption.

Therefore, the researchers had to rely on a more complicated routine of flashing the device with a modified firmware that allows them to perform various routines, which ultimately allow them to either decrypt the password or authenticate to the device using an empty password. The researchers have found that both the "ATA security" and "Opal Storage Specification" for self-encrypting drives have material implementation flaws in SSD firmware which are trivial to exploit, in order to gain access to drive contents. The SSD's builtin processor and firmware are free to use the DEK whenever they like, but only choose to do so when the correct password is supplied. While the MX300 has significant implementation improvements, the whole drive can be unlocked with a master password, which by default is blank. These faulty implementations meant that the user-chosen password and the disk encryption key weren't cryptographically linked.

"Absence of this [cryptographically linking] property is catastrophic", researchers said.

They said Microsoft shares some of the blame for Windows user data that can easily be stolen from their encrypted drives by people with access to the users' laptops. "All the information required to recover the user data is stored on the drive itself and can be retrieved".

More news: UK business bosses add voices to call for new Brexit vote

The Dutch researchers also called out drive makers for using proprietary encryption systems when open source ones, like VeraCrypt, are much better.

"We have analyzed the hardware full-disk encryption of several SSDs by reverse engineering their firmware", stated the report.

The researchers have responsibly disclosed their findings to Crucial and Samsung in April 2018.

Samsung's 840 EVO and 850 EVO internal SSDs, as well as the T3 and T5 external SSDs were also found to be deficient.

But the reported issues go far deeper than researchers initially realized, and especially for Windows users, who are in more danger than others. That means that if you chose to use Bitlocker for extra safety and owned one of the above-mentioned drives, you could have basically zero protection. "For multiple models, it is possible to bypass the encryption entirely, allowing for a complete recovery of the data without any knowledge of passwords or keys". "Furthermore, BitLocker users can change their preference to enforce software encryption even if hardware encryption is supported by adjusting the Group Policy setting".

The researchers have recommended the SED users to use software-level full disk encryption systems such as VeraCrypt to protect their data.

In addition, because the root of the problem resides in how vendors have implemented hardware-level encryption specifications, the two researchers have also advised the TCG working group to "publish a reference implementation of Opal to aid developers", and also make this sample implementation public so security researchers can probe it for vulnerabilities.

Recommended

What we learned from Duke’s big win over Kentucky What we learned from Duke’s big win over Kentucky With just two exhibition games under their belts, we did not have a whole lot to go on when breaking down this Kansas team. Check out some more highlights from Duke's decisive victory over the Kentucky Wildcats in the tweets embedded below.

AMD launches two new 7nm Vega GPUs at Next Horizon event AMD launches two new 7nm Vega GPUs at Next Horizon event The move to 7nm allows AMD to take full advantage of the Vega architecture. This is a significant jump from the 16GB HBM2 of the Radeon Instinct MI25.

Red Dead Redemption 2 Camp Bug Fix is On Rockstar’s Agenda Red Dead Redemption 2 Camp Bug Fix is On Rockstar’s Agenda Fans of the popular console game Red Dead Redemption 2 can explore a hidden Mexico map by exploiting a glitch in the game. Traditional sandbox titles allow players to roam the in-game world at will.

Nasa photo shows 'flying saucer crash site' in desert Nasa photo shows 'flying saucer crash site' in desert The "flying saucer" actually belonged to NASA , not some alien species initiating its takeover of our planet. Another three years later, a series of papers were published on the Genesis mission.

AMD unveils 64-core Zen 2 CPU, first 7nm GPU AMD unveils 64-core Zen 2 CPU, first 7nm GPU We have 2x performance per socket compared to the previous-gen EPYC processor, and this is an insane leap in performance. They will not only be the first Zen 2-based product, but they are being built using an all-new design implementation.

Michigan, Missouri, Utah voters opt to loosen marijuana laws Michigan, Missouri, Utah voters opt to loosen marijuana laws Proposal 1 establishes a 10 percent tax on marijuana products in addition to Michigan's 6 percent sales tax. Michigan, which already had medical marijuana, became the first Midwestern state to fully legalize pot.

Marcus Rashford's late victor provides much-needed momentum ahead of Manchester derby Marcus Rashford's late victor  provides much-needed momentum ahead of Manchester derby The changes allowed United a measure of control in the second half and Rashford snatched the victor deep into stoppage-time. I love the song, "attack, attack, attack" but you need to have stability when you lose the ball.

Northern Districts duo smash world record 43 from an over Northern Districts duo smash world record 43 from an over That was an understatement from a modest Hampton, who added that it was "good to get a few out of the middle" along with the win. The Bangladesh cricketer had conceded 39 runs in a Dhaka Premier League match in 2013.

Bill Gates unveils futuristic toilet that turns human waste to fertilizer Bill Gates unveils futuristic toilet that turns human waste to fertilizer It has been introduced in primary schools, temples and tourist spots in Yixing, Jiangsu province and has capacity for 300 to 2,500 flushes a day, costing about 15 USA cents each time.

Heathrow passengers delayed after runway lighting problem Flights into Heathrow were delayed by up to three hours today after runway lights failed. This included 11 flights delayed by more...

Cesar Sayoc Held Without Bail After First NY Court Appearance Cesar Sayoc Held Without Bail After First NY Court Appearance The 56-year-old appeared in court wearing a blue T-shirt with his gray hair pulled back in a tight pony tail. Meanwhile, Sayoc's court-appointed lawyer did not seek his release on bail.

Spice Girls reveal we've been singing this iconic lyric wrong Spice Girls reveal we've been singing this iconic lyric wrong However, the band did not respond to Evans' assertion that he "knew for a fact that you've put some stadiums on hold". All five returned for a reunion tour in 2007 and a performance at the closing ceremony of the London 2012 Olympics.

Speculation mounts that Meghan Markle's mum will move to UK Speculation mounts that Meghan Markle's mum will move to UK The Queen had broken protocol for Markle before by inviting her to Sandringham activities when she was engaged to Prince Harry . The Middletons have spent Christmas with the royal family but resided in the neighboring country house Anmer Hall instead.

Pat Howard becomes latest senior figure to leave Cricket Australia Pat Howard becomes latest senior figure to leave Cricket Australia THE bloodletting has continued at Cricket Australia with senior executives Pat Howard and Ben Amarfio given their marching orders. Chairman David Peever and board member and former captain Mark Taylor have both resigned since the review .

Christopher Watts pleads guilty in deaths of wife, young daughters Christopher Watts pleads guilty in deaths of wife, young daughters The pleas were in exchange for prosecutors taking the death penalty off the table however the counts still carry a life sentence. The cause of death for the victims has never been publicly confirmed, though court records have suggested they were strangled.