Author Topic: Breaking Vista's filesystem encryption  (Read 10188 times)

0 Members and 2 Guests are viewing this topic.

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Breaking Vista's filesystem encryption
« on: February 21, 2006, 11:24:31 pm »
So much for information security:

http://www.vnunet.com/vnunet/news/2150555/microsoft-teaching-police-hack

Quote
Microsoft may begin training the police in ways to break the encryption built into its forthcoming Vista operating system. [....] "It is our goal to give PC users the control and confidence they need so they can continue to get the most out of their PCs," said a Microsoft spokeswoman.  "At the same time, we are working with law enforcement to help them understand its security features and will continue to partner with governments, law enforcement and industry to help make the internet a safer place to learn and communicate."

Offline Newby

  • x86
  • Hero Member
  • *****
  • Posts: 10877
  • Thrash!
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #1 on: February 21, 2006, 11:36:31 pm »
And eventually one of them will leak it to the public, and bam, encryption is useless. Hooray!
- Newby
http://www.x86labs.org

Quote
[17:32:45] * xar sets mode: -oooooooooo algorithm ban chris cipher newby stdio TehUser tnarongi|away vursed warz
[17:32:54] * xar sets mode: +o newby
[17:32:58] <xar> new rule
[17:33:02] <xar> me and newby rule all

I'd bet that you're currently bloated like a water ballon on a hot summer's day.

That analogy doesn't even make sense.  Why would a water balloon be especially bloated on a hot summer's day? For your sake, I hope there wasn't too much logic testing on your LSAT. 

Offline deadly7

  • 42
  • x86
  • Hero Member
  • *****
  • Posts: 6496
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #2 on: February 21, 2006, 11:46:43 pm »
And eventually one of them will leak it to the public, and bam, encryption is useless. Hooray!
Hasn't encryption always been useless, though?  If you think about it, there's a plausible decryption for every encryption.  Sometimes it's blatantly obvious, sometimes it's not.
[17:42:21.609] <Ergot> Kutsuju you're girlfrieds pussy must be a 403 error for you
 [17:42:25.585] <Ergot> FORBIDDEN

on IRC playing T&T++
<iago> He is unarmed
<Hitmen> he has no arms?!

on AIM with a drunk mythix:
(00:50:05) Mythix: Deadly
(00:50:11) Mythix: I'm going to fuck that red dot out of your head.
(00:50:15) Mythix: with my nine

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #3 on: February 21, 2006, 11:51:44 pm »
Hasn't encryption always been useless, though?  If you think about it, there's a plausible decryption for every encryption.  Sometimes it's blatantly obvious, sometimes it's not.

No, not useless.  If it was useless, it would be infinitely easy to crack! :)

Some encryption (by standard means) takes literally years to break.  By that time, the desired data is usually purposeless.

Offline Warrior

  • supreme mac daddy of trolls
  • Hero Member
  • *****
  • Posts: 7503
  • One for a Dime two for a Quarter!
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #4 on: February 22, 2006, 12:16:57 am »
I don't know what to think, I mean the EU also wants them to put backdoors in their FS. Is anyone forcing MS to do this specificly because it's rediculous if they are not. I wont side with MS, I think this is a really bad idea with potentially dangerous results.
*sigh* why can't they see when they're bound to get burned.
One must ask oneself: "do I will trolling to become a universal law?" And then when one realizes "yes, I do will it to be such," one feels completely justified.
-- from Groundwork for the Metaphysics of Trolling

Offline Newby

  • x86
  • Hero Member
  • *****
  • Posts: 10877
  • Thrash!
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #5 on: February 22, 2006, 12:23:11 am »
I don't know what to think, I mean the EU also wants them to put backdoors in their FS. Is anyone forcing MS to do this specificly because it's rediculous if they are not. I wont side with MS, I think this is a really bad idea with potentially dangerous results.
*sigh* why can't they see when they're bound to get burned.

They don't want to lose market share. They want to make compromises for everyone, and meet in the middle. Too bad the middle is infested with people waiting to rip M$ apart.
- Newby
http://www.x86labs.org

Quote
[17:32:45] * xar sets mode: -oooooooooo algorithm ban chris cipher newby stdio TehUser tnarongi|away vursed warz
[17:32:54] * xar sets mode: +o newby
[17:32:58] <xar> new rule
[17:33:02] <xar> me and newby rule all

I'd bet that you're currently bloated like a water ballon on a hot summer's day.

That analogy doesn't even make sense.  Why would a water balloon be especially bloated on a hot summer's day? For your sake, I hope there wasn't too much logic testing on your LSAT. 

Offline mc0

  • Newbie
  • *
  • Posts: 8
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #6 on: February 28, 2006, 12:04:56 am »
Hasn't encryption always been useless, though?  If you think about it, there's a plausible decryption for every encryption.  Sometimes it's blatantly obvious, sometimes it's not.

No, not useless.  If it was useless, it would be infinitely easy to crack! :)

Some encryption (by standard means) takes literally years to break.  By that time, the desired data is usually purposeless.

(md5)

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #7 on: February 28, 2006, 12:11:29 am »
(md5)

MD5 is a one-way hash, not encryption.  You can find something that produces the same hash, but there's absolutely no guarantee that the collision is the exact same string used to form the hash in the first place.

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Breaking Vista's filesystem encryption
« Reply #8 on: February 28, 2006, 08:47:25 am »
Yeah, there is a difference between encryption, hashing, and encoding.  In this case, we're talking about encryption. 

But yeah, if they build a backdoor into their encryption, that would be stupid. 

Offline mc0

  • Newbie
  • *
  • Posts: 8
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #9 on: February 28, 2006, 11:01:55 pm »
Yeah, there is a difference between encryption, hashing, and encoding.  In this case, we're talking about encryption. 

But yeah, if they build a backdoor into their encryption, that would be stupid. 

Providing an example of something that can take ages to crack. ;x

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #10 on: February 28, 2006, 11:15:43 pm »
Providing an example of something that can take ages to crack. ;x

It's potentially so improbable that it can be cracked, that it can usually be considered an impossibility.

Since a MD5 hash of a string is simply a really, really big integer that is a "thumbprint" of that string, it's impossible to reverse the function with any degree of certainty that the string you've produced is the string that was used to originally create that string.

There are (virtually) an infinite amount of strings that can be plugged into the MD5 hashing function.  There are far, far less resulting possibilities of output.  If you find a collision, chances are the string you've created to produce the collision isn't the string that originally formed the hash (reiterating, hehe).

Offline Armin

  • Honorary Leader
  • x86
  • Hero Member
  • *****
  • Posts: 2480
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #11 on: March 04, 2006, 04:53:06 pm »
Where in that article is actual proof that Microsoft said they may be doing it? All it looks like to me, is that the person who wrote that article decided to throw out a random possibility from the largely general statement Microsoft has made.

Microsoft: "[W]e are working with law enforcement to help them understand its security features and will continue to partner with governments, law enforcement and industry to help make the internet a safer place to learn and communicate."
Person who wrote the article: "OMG OMG!!! MICROSOFT *MAY* BEGIN TRAINING OFFICERS IN WAYS TO BREAK THE ENCRYPTION BUILT INTO VISTA!!!!!!11"

I'm sorry, but I don't consider that a valid connection.
Hitmen: art is gay

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #12 on: March 04, 2006, 04:55:53 pm »
I'm sorry, but I don't consider that a valid connection.

Why?  What false conclusion did they draw?

Offline Armin

  • Honorary Leader
  • x86
  • Hero Member
  • *****
  • Posts: 2480
    • View Profile
Re: Breaking Vista's filesystem encryption
« Reply #13 on: March 04, 2006, 04:58:59 pm »
Here, let me correct myself. I don't consider it a plausible* connect. Read my post if you have the same question, because it's already answered.
Hitmen: art is gay

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17634
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Breaking Vista's filesystem encryption
« Reply #14 on: March 04, 2006, 05:06:03 pm »
Here, let me correct myself. I don't consider it a plausible* connect. Read my post if you have the same question, because it's already answered.

No it's not.  Why shouldn't this be considered?  Microsoft is already releasing valuable security information to the government.  If you think that the government is constructed by a bunch of mindless, perfect zombies, you're wrong.  The information will be leaked in no time.