Author Topic: Breaking Vista's filesystem encryption  (Read 10226 times)

0 Members and 1 Guest are viewing this topic.

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Breaking Vista's filesystem encryption
« on: February 21, 2006, 11:24:31 pm »
So much for information security:

http://www.vnunet.com/vnunet/news/2150555/microsoft-teaching-police-hack

Quote
Microsoft may begin training the police in ways to break the encryption built into its forthcoming Vista operating system. [....] "It is our goal to give PC users the control and confidence they need so they can continue to get the most out of their PCs," said a Microsoft spokeswoman.  "At the same time, we are working with law enforcement to help them understand its security features and will continue to partner with governments, law enforcement and industry to help make the internet a safer place to learn and communicate."

Offline Newby

  • x86
  • Hero Member
  • *****
  • Posts: 10877
  • Thrash!
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #1 on: February 21, 2006, 11:36:31 pm »
And eventually one of them will leak it to the public, and bam, encryption is useless. Hooray!
- Newby
http://www.x86labs.org

Quote
[17:32:45] * xar sets mode: -oooooooooo algorithm ban chris cipher newby stdio TehUser tnarongi|away vursed warz
[17:32:54] * xar sets mode: +o newby
[17:32:58] <xar> new rule
[17:33:02] <xar> me and newby rule all

I'd bet that you're currently bloated like a water ballon on a hot summer's day.

That analogy doesn't even make sense.  Why would a water balloon be especially bloated on a hot summer's day? For your sake, I hope there wasn't too much logic testing on your LSAT. 

Offline deadly7

  • 42
  • x86
  • Hero Member
  • *****
  • Posts: 6496
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #2 on: February 21, 2006, 11:46:43 pm »
And eventually one of them will leak it to the public, and bam, encryption is useless. Hooray!
Hasn't encryption always been useless, though?  If you think about it, there's a plausible decryption for every encryption.  Sometimes it's blatantly obvious, sometimes it's not.
[17:42:21.609] <Ergot> Kutsuju you're girlfrieds pussy must be a 403 error for you
 [17:42:25.585] <Ergot> FORBIDDEN

on IRC playing T&T++
<iago> He is unarmed
<Hitmen> he has no arms?!

on AIM with a drunk mythix:
(00:50:05) Mythix: Deadly
(00:50:11) Mythix: I'm going to fuck that red dot out of your head.
(00:50:15) Mythix: with my nine

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #3 on: February 21, 2006, 11:51:44 pm »
Hasn't encryption always been useless, though?  If you think about it, there's a plausible decryption for every encryption.  Sometimes it's blatantly obvious, sometimes it's not.

No, not useless.  If it was useless, it would be infinitely easy to crack! :)

Some encryption (by standard means) takes literally years to break.  By that time, the desired data is usually purposeless.

Offline Warrior

  • supreme mac daddy of trolls
  • Hero Member
  • *****
  • Posts: 7503
  • One for a Dime two for a Quarter!
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #4 on: February 22, 2006, 12:16:57 am »
I don't know what to think, I mean the EU also wants them to put backdoors in their FS. Is anyone forcing MS to do this specificly because it's rediculous if they are not. I wont side with MS, I think this is a really bad idea with potentially dangerous results.
*sigh* why can't they see when they're bound to get burned.
One must ask oneself: "do I will trolling to become a universal law?" And then when one realizes "yes, I do will it to be such," one feels completely justified.
-- from Groundwork for the Metaphysics of Trolling

Offline Newby

  • x86
  • Hero Member
  • *****
  • Posts: 10877
  • Thrash!
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #5 on: February 22, 2006, 12:23:11 am »
I don't know what to think, I mean the EU also wants them to put backdoors in their FS. Is anyone forcing MS to do this specificly because it's rediculous if they are not. I wont side with MS, I think this is a really bad idea with potentially dangerous results.
*sigh* why can't they see when they're bound to get burned.

They don't want to lose market share. They want to make compromises for everyone, and meet in the middle. Too bad the middle is infested with people waiting to rip M$ apart.
- Newby
http://www.x86labs.org

Quote
[17:32:45] * xar sets mode: -oooooooooo algorithm ban chris cipher newby stdio TehUser tnarongi|away vursed warz
[17:32:54] * xar sets mode: +o newby
[17:32:58] <xar> new rule
[17:33:02] <xar> me and newby rule all

I'd bet that you're currently bloated like a water ballon on a hot summer's day.

That analogy doesn't even make sense.  Why would a water balloon be especially bloated on a hot summer's day? For your sake, I hope there wasn't too much logic testing on your LSAT. 

Offline mc0

  • Newbie
  • *
  • Posts: 8
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #6 on: February 28, 2006, 12:04:56 am »
Hasn't encryption always been useless, though?  If you think about it, there's a plausible decryption for every encryption.  Sometimes it's blatantly obvious, sometimes it's not.

No, not useless.  If it was useless, it would be infinitely easy to crack! :)

Some encryption (by standard means) takes literally years to break.  By that time, the desired data is usually purposeless.

(md5)

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #7 on: February 28, 2006, 12:11:29 am »
(md5)

MD5 is a one-way hash, not encryption.  You can find something that produces the same hash, but there's absolutely no guarantee that the collision is the exact same string used to form the hash in the first place.

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Breaking Vista's filesystem encryption
« Reply #8 on: February 28, 2006, 08:47:25 am »
Yeah, there is a difference between encryption, hashing, and encoding.  In this case, we're talking about encryption. 

But yeah, if they build a backdoor into their encryption, that would be stupid. 

Offline mc0

  • Newbie
  • *
  • Posts: 8
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #9 on: February 28, 2006, 11:01:55 pm »
Yeah, there is a difference between encryption, hashing, and encoding.  In this case, we're talking about encryption. 

But yeah, if they build a backdoor into their encryption, that would be stupid. 

Providing an example of something that can take ages to crack. ;x

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #10 on: February 28, 2006, 11:15:43 pm »
Providing an example of something that can take ages to crack. ;x

It's potentially so improbable that it can be cracked, that it can usually be considered an impossibility.

Since a MD5 hash of a string is simply a really, really big integer that is a "thumbprint" of that string, it's impossible to reverse the function with any degree of certainty that the string you've produced is the string that was used to originally create that string.

There are (virtually) an infinite amount of strings that can be plugged into the MD5 hashing function.  There are far, far less resulting possibilities of output.  If you find a collision, chances are the string you've created to produce the collision isn't the string that originally formed the hash (reiterating, hehe).

Offline Armin

  • Honorary Leader
  • x86
  • Hero Member
  • *****
  • Posts: 2480
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #11 on: March 04, 2006, 04:53:06 pm »
Where in that article is actual proof that Microsoft said they may be doing it? All it looks like to me, is that the person who wrote that article decided to throw out a random possibility from the largely general statement Microsoft has made.

Microsoft: "[W]e are working with law enforcement to help them understand its security features and will continue to partner with governments, law enforcement and industry to help make the internet a safer place to learn and communicate."
Person who wrote the article: "OMG OMG!!! MICROSOFT *MAY* BEGIN TRAINING OFFICERS IN WAYS TO BREAK THE ENCRYPTION BUILT INTO VISTA!!!!!!11"

I'm sorry, but I don't consider that a valid connection.
Hitmen: art is gay

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #12 on: March 04, 2006, 04:55:53 pm »
I'm sorry, but I don't consider that a valid connection.

Why?  What false conclusion did they draw?

Offline Armin

  • Honorary Leader
  • x86
  • Hero Member
  • *****
  • Posts: 2480
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #13 on: March 04, 2006, 04:58:59 pm »
Here, let me correct myself. I don't consider it a plausible* connect. Read my post if you have the same question, because it's already answered.
Hitmen: art is gay

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #14 on: March 04, 2006, 05:06:03 pm »
Here, let me correct myself. I don't consider it a plausible* connect. Read my post if you have the same question, because it's already answered.

No it's not.  Why shouldn't this be considered?  Microsoft is already releasing valuable security information to the government.  If you think that the government is constructed by a bunch of mindless, perfect zombies, you're wrong.  The information will be leaked in no time.

Offline Armin

  • Honorary Leader
  • x86
  • Hero Member
  • *****
  • Posts: 2480
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #15 on: March 04, 2006, 06:36:10 pm »
You obviously misinterperated what I said. Reread it.
Hitmen: art is gay

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #16 on: March 04, 2006, 06:40:37 pm »
Not really.

If you're going to claim this isn't true, find articles proving it or disproving it.  Otherwise, your claim is just as bogus.

Offline Warrior

  • supreme mac daddy of trolls
  • Hero Member
  • *****
  • Posts: 7503
  • One for a Dime two for a Quarter!
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #17 on: March 04, 2006, 06:48:16 pm »
One must ask oneself: "do I will trolling to become a universal law?" And then when one realizes "yes, I do will it to be such," one feels completely justified.
-- from Groundwork for the Metaphysics of Trolling

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #18 on: March 04, 2006, 07:15:30 pm »
http://www.x86labs.org:81/forum/index.php/topic,5073.0.html

It isn't happening.

These are two different issues.  Yours is dealing with implementing backdoors in shipped versions of Vista.  This one is teaching government (specifically law enforcement officials) how to break the filesystem encryption.

Offline Warrior

  • supreme mac daddy of trolls
  • Hero Member
  • *****
  • Posts: 7503
  • One for a Dime two for a Quarter!
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #19 on: March 04, 2006, 07:41:07 pm »
If you'd read:

Quote
Microsoft may begin training the police in ways to break the encryption built into its forthcoming Vista operating system.

and

Quote
Government officials look at the security of new systems, whether they are easy for the general public to hack into and how the police can access material in them.

from the BBC article

They seem pretty much related to me.
One must ask oneself: "do I will trolling to become a universal law?" And then when one realizes "yes, I do will it to be such," one feels completely justified.
-- from Groundwork for the Metaphysics of Trolling

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #20 on: March 04, 2006, 08:47:54 pm »
If you'd read:

Quote
Microsoft may begin training the police in ways to break the encryption built into its forthcoming Vista operating system.

and

Quote
Government officials look at the security of new systems, whether they are easy for the general public to hack into and how the police can access material in them.

from the BBC article

They seem pretty much related to me.

From the sounds of the second article, Police are going to be getting into Microsoft's filesystem encryption, whether they like it or not.

Quote
Government officials look at the security of new systems, whether they are easy for the general public to hack into and how the police can access material in them.

Offline Armin

  • Honorary Leader
  • x86
  • Hero Member
  • *****
  • Posts: 2480
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #21 on: March 04, 2006, 10:02:23 pm »
Not really.

If you're going to claim this isn't true, find articles proving it or disproving it.  Otherwise, your claim is just as bogus.
You still obviously misinterpreted what I said. I never said anything about it's not true, I just said it's a horrible, incredibly specific guess comming from an incredibly general statement. Please read this more closely so you actually understand what I'm trying to say, because your posts have nothing to do with my main idea.
Quote from: Microsoft
[W]e are working with law enforcement to help them understand its security features and will continue to partner with governments, law enforcement and industry to help make the internet a safer place to learn and communicate.
Quote from: Author of the article
Microsoft may begin training the police in ways to break the encryption built into its forthcoming Vista operating system.
Microsoft said absolutely nothing about training the police in ways to break Vista's encryption. Now, I'm not saying that Microsoft isn't working with police and that it's a false statement, but if that's where the author got all of his sources from, that's one hell of an assumption.
Hitmen: art is gay

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #22 on: March 04, 2006, 11:05:27 pm »
Not really.

If you're going to claim this isn't true, find articles proving it or disproving it.  Otherwise, your claim is just as bogus.
You still obviously misinterpreted what I said. I never said anything about it's not true, I just said it's a horrible, incredibly specific guess comming from an incredibly general statement. Please read this more closely so you actually understand what I'm trying to say, because your posts have nothing to do with my main idea.
Quote from: Microsoft
[W]e are working with law enforcement to help them understand its security features and will continue to partner with governments, law enforcement and industry to help make the internet a safer place to learn and communicate.
Quote from: Author of the article
Microsoft may begin training the police in ways to break the encryption built into its forthcoming Vista operating system.
Microsoft said absolutely nothing about training the police in ways to break Vista's encryption. Now, I'm not saying that Microsoft isn't working with police and that it's a false statement, but if that's where the author got all of his sources from, that's one hell of an assumption.

What's wrong with drawing a conclusion like that when you see Microsoft publish an article like that?

 -- Microsoft explicitly stated they are working with law enforcement to understand security features.

They're teaching law enforcement officials to "understand" security features.  Why would law enforcement officials want to understand security features?  So they can get around them; so they can get to potentially case-breaking information stored on a hard drive or some similar media.  What security measures do they need to get around this?  Encryption.

I just don't think you're seeing what I'm seeing in the article.

Offline Armin

  • Honorary Leader
  • x86
  • Hero Member
  • *****
  • Posts: 2480
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #23 on: March 05, 2006, 12:18:39 am »
Yeah, I guess I was just looking at it at just a literal level, and not really thinking about what it means. Makes sense when I look at it like that.
Hitmen: art is gay

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Breaking Vista's filesystem encryption
« Reply #24 on: March 05, 2006, 01:02:06 am »
I haven't read this whole thread, but ohwell :P

In terms of the backdoor idea, one Microsoft developer has confirmed that he won't do it.  I believe he said, "over my dead body" (I just glanced over it at /.).  Of course, that doesn't stop the corporation as a whole from doing it, but it doesn't seem likely. 

I'm glad that Microsoft is training law enforcement on how the filesystem encryption works.  I know that I've had to deal with encrypted harddrives in a forensic situation before.  We had to decrypt them without modifying them, based on the user's password which we had.  This could be an example of where the situation differs between what Sidoh and Metal are saying.  We don't know how to BREAK the encryption, but we know how to work with it. 

Offline Warrior

  • supreme mac daddy of trolls
  • Hero Member
  • *****
  • Posts: 7503
  • One for a Dime two for a Quarter!
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #25 on: March 05, 2006, 01:08:39 am »
That's probably the best approach, inform them enough to know how to play with it but don't put in a deadset backdoor.
Information like that is probably harder to spread than whatever backdoor they may have put in.
One must ask oneself: "do I will trolling to become a universal law?" And then when one realizes "yes, I do will it to be such," one feels completely justified.
-- from Groundwork for the Metaphysics of Trolling