This is a good illustration how data in use is exposed to physical attacks on most computing devices.
An interesting side-note is that Android phones are starting to ship with a hardware security module (HSM), which can be used for crypto operations and key storage. Duo Security is one company that started using the HSM to store credentials: http://siliconangle.com/blog/2013/02/19/simple-to-scale-duo-security-uses-android-hardware-for-its-own-hack-resistance/ I haven't found much about the capabilities of these HSMs. It's not a silver bullet since they may still be key material exposed in memory, but I think it's a positive development. On Thu, Feb 21, 2013 at 7:12 AM, Brian Conley <bri...@smallworldnews.tv>wrote: > > http://www.forbes.com/sites/andygreenberg/2013/02/14/frost-attack-unlocks-android-phones-data-by-chilling-its-memory-in-a-freezer/ > > -- > Unsubscribe, change to digest, or change password at: > https://mailman.stanford.edu/mailman/listinfo/liberationtech >
-- Unsubscribe, change to digest, or change password at: https://mailman.stanford.edu/mailman/listinfo/liberationtech
