I know people have mixed opinions on Braxman but I don’t see any huge leaps in logic here tbh… Thoughts?

  • @[email protected]
    link
    fedilink
    157 months ago

    3 letter agencies, governments in general and data hungry companies will continue searching for a way to bypass encryption. And just a reminder: direct access to the system (remote or physical) bypasses all kinds of encryption unless it’s protected separately. Backdoors and kernel level anti-cheats ftw

      • @MiskOP
        link
        37 months ago

        Physical access like an NPU chip fixed onto your motherboard?

          • @[email protected]
            link
            fedilink
            37 months ago

            I didn’t mean that. I meant if the hacker has access to the administrator (or just user in case with E2EE messengers) account, they can see and download anything, no matter how encrypted it is. The chips can do stuff as well but idk any proof of that tbh

            • @[email protected]
              link
              fedilink
              English
              1
              edit-2
              7 months ago

              Sure, side channel leakage if you can run locally.

              Honestly, most machines have enough cores, that you could pin a process to a specific core giving it independent cache, and work around a lot of these side channel attacks. So you’re encrypted end to end messenger would get an exclusive core. Kind of like how we do VM pinning nowadays

      • @PM_Your_Nudes_Please
        link
        3
        edit-2
        7 months ago

        Eh, kind of. Remote Desktop with an admin account would be more useful than physical access to a locked computer. Because if Bitlocker is enabled, then all that matters is that you can sign into the computer. Use strong passwords, don’t open RDP to the WAN, lock your workstations when walking away, etc…

        Even cloning the drive to crack later (historically, this was a popular choice if you had physical access) is pretty useless if you don’t have a user’s password.

      • @[email protected]
        link
        fedilink
        English
        37 months ago

        Not really? If disks are encrypted good luck getting anything out of it. A remote access to a running machine? It’s all laid there.

  • Snot Flickerman
    link
    fedilink
    English
    107 months ago

    Death of encryption?

    They are rolling out forced turned-on-by-default BitLocker hard drive encryption for everyone using Windows 11. Including all those people who dont understand how it works and won’t save their backup keys.

    Microsoft is dumb but pretending they are trying to kill encryption is also dumb.

    • @MiskOP
      link
      16 months ago

      I suppose I meant to say “end to end encryption”. It’s no secret that it’s been under attack from the top down for a long time but from my understanding the legislation keeps getting shot down. This seems like a perfect workaround unless I’m missing something.