Saturday, June 30, 2007

Black Hat USA not so black

A presentation scheduled for Black Hat USA 2007 that promised to undermine chip-based desktop and laptop security has been suddenly withdrawn without explanation. A demonstration of a hack, which breaks Trusted Computing Group’s Trusted Platform Module and Vista's BitLocker has been dropped.

Nitin and Vipin Kumar were down to give a demonstration which promised to show a huge hole in chip-based desktop and laptop security. At the Black Hat conference in Amsterdam earlier this year the Kumars demonstrated a bootkit that can insinuate itself into the Vista kernel without setting off Vista security alarms.

Read the article HERE.

The important thing here is not that the demo has been dropped, but that this flaw in the technology may exist. As they have demonstrated a successful hack before, and given the Kumars' history, I am more than prepared to give this a 90+% credibility rating. The bottom line - do we again have to rethink our security policies?

0 Comments:

Post a Comment

<< Home