Misplaced Pages

Talk:USB flash drive security: Difference between revisions

Article snapshot taken from[REDACTED] with creative commons attribution-sharealike license. Give it a read and then ask your questions in the chat. We can research this topic together.
Browse history interactively← Previous editContent deleted Content addedVisualWikitext
Revision as of 22:17, 28 February 2009 editMBisanz (talk | contribs)Extended confirmed users126,668 edits Misplaced Pages:Articles for deletion/Secure USB drive closed as keep← Previous edit Latest revision as of 05:17, 27 January 2024 edit undoQwerfjkl (bot) (talk | contribs)Bots, Mass message senders4,025,532 edits Implementing WP:PIQA (Task 26)Tag: Talk banner shell conversion 
(8 intermediate revisions by 8 users not shown)
Line 1: Line 1:
{{oldafdfull| date = 23 February 2009 (UTC) | result = '''keep''' | page = Secure USB drive }} {{oldafdfull| date = 23 February 2009 (UTC) | result = '''keep''' | page = Secure USB drive }}
{{WikiProject banner shell|class=Start|

{{WikiProject Computing|hardware=yes|class=Start|importance=low}} {{WikiProject Computing|importance=low|hardware=yes|hardware-importance=low}}
}}


==Cleanup== ==Cleanup==
Line 9: Line 10:
<nowiki>{{reflist}}</nowiki> <nowiki>{{reflist}}</nowiki>
at the end of the article. Moreover, the article should start with a short definition of what a secure USB drive is, rather than with an argument, and this short definition can be worked out later in the article. - ] (]) 08:09, 25 September 2008 (UTC) at the end of the article. Moreover, the article should start with a short definition of what a secure USB drive is, rather than with an argument, and this short definition can be worked out later in the article. - ] (]) 08:09, 25 September 2008 (UTC)
==Accuracy==
The current article I see some assertions that are not referenced. I suggest a rolling list below

# Hardware v Software Encryption
The article claims that Hardware encryption has been "functionally" replaced by strong software encryption. I suggest that the author is using too low a bar for this judgement. Hardware and Software encryption may be equivalent from a cryptographic standpoint but from a "functional" or practical view hardware offers a device centric protection independent of the Operating or file system.
here's an example where a software based solution would fail
the text below comes from a SANdisk whitepaper I'm not putting this paper forward as first source as it is itself unreferenced but it indicates the issue.

:That's not true; the article doesn't mention any kind of "replacement" - it objectivly puts forward the two options: software and hardware.

Cold Boot Attack

Very recent research by a team at the highly respected Princeton1 University points to how a little known characteristic of DRAM memory can serve as a window of opportunity for a cold boot attack.
DRAM memory is used to store data while the system is running. After power is removed, all content is deleted in a gradual process that can take anywhere between a few seconds and up to a few minutes. If the chip is cooled by artificial means, the content can be retained for as long as 10 minutes.
This characteristic of DRAM memory enables a hacker to read the memory content by cutting power and then performing a cold boot with a malicious operating system. This is deadly for disk encryption products that rely on software means to store encryption keys. An attacker can cut power to the computer, then power it back up and boot a malicious operating system that copies the memory content. The attacker can then search through the captured memory content, find the master decryption keys and use them to start decrypting hard disk contents. To retain the content for a longer interval, the hacker can simply chill the DRAM chip before cutting power.
A hardware-based encryption system is not vulnerable to a cold boot attack since it does not use the host RAM to store the keys.

:This is pure FUD to promote hardware systems - if you check the facts, "cold boot" attacks require the relevant keys to be in-memory at the time the PC is switched off, and for someone to power it back on ''very'' shortly afterwards. The reality is that if the keyd are in memory, the drive is mounted, and someone can just read data straight off it anyway/ See the for more details.
:Technically, it's true however, so I've added a bit to this effect. ] (]) 08:16, 29 September 2009 (UTC)

==Compromised and fixed devices==

So does anyone else think the text about security fixes reads like vendor PR?] (]) 09:10, 15 February 2011 (UTC)

== External links modified ==

Hello fellow Wikipedians,

I have just added archive links to {{plural:2|one external link|2 external links}} on ]. Please take a moment to review . If necessary, add {{tlx|cbignore}} after the link to keep me from modifying it. Alternatively, you can add {{tlx|nobots|deny{{=}}InternetArchiveBot}} to keep me off the page altogether. I made the following changes:
*Added archive https://web.archive.org/20090219224010/http://www.enisa.europa.eu:80/doc/pdf/publications/Secure%20USB%20drives_180608.pdf to http://www.enisa.europa.eu/doc/pdf/publications/Secure%20USB%20drives_180608.pdf
*Added archive https://web.archive.org/20100106164337/http://sandisk.com/business-solutions/enterprise/technical-support/security-bulletin-december-2009 to http://www.sandisk.com/business-solutions/enterprise/technical-support/security-bulletin-december-2009

When you have finished reviewing my changes, please set the ''checked'' parameter below to '''true''' to let others know.

{{sourcecheck|checked=false}}

Cheers.—]<small><sub style="margin-left:-14.9ex;color:green;font-family:Comic Sans MS;">]:Online</sub></small> 10:25, 25 January 2016 (UTC)

== Firmware attacks ==
Are firmware attacks worth a mention?

https://lifehacker.com/how-to-check-your-usb-devices-for-unsafe-firmware-1841773522

] (]) 17:29, 14 February 2022 (UTC)

Latest revision as of 05:17, 27 January 2024

Articles for deletionThis article was nominated for deletion on 23 February 2009 (UTC). The result of the discussion was keep.
This article is rated Start-class on Misplaced Pages's content assessment scale.
It is of interest to the following WikiProjects:
WikiProject iconComputing Low‑importance
WikiProject iconThis article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Misplaced Pages. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.ComputingWikipedia:WikiProject ComputingTemplate:WikiProject ComputingComputing
LowThis article has been rated as Low-importance on the project's importance scale.
Taskforce icon
This article is supported by Computer hardware task force (assessed as Low-importance).

Cleanup

I placed a similar comment on User Talk:Techdoctor as well. Secure USB flash drives seem to be an interesting topic. However, as someone else already remarked, it reads like an essay or magazine article where the author tries to provide arguments to convince the reader. Maybe these arguments are from publications. There are a number of references, but it is not clear which reference makes what argument, and which arguments are your own opinion. The easiest way to deal with it is to use something like

  <ref></ref>

directly after each statement, and

  {{reflist}}

at the end of the article. Moreover, the article should start with a short definition of what a secure USB drive is, rather than with an argument, and this short definition can be worked out later in the article. - Han-Kwang (t) 08:09, 25 September 2008 (UTC)

Accuracy

The current article I see some assertions that are not referenced. I suggest a rolling list below

  1. Hardware v Software Encryption

The article claims that Hardware encryption has been "functionally" replaced by strong software encryption. I suggest that the author is using too low a bar for this judgement. Hardware and Software encryption may be equivalent from a cryptographic standpoint but from a "functional" or practical view hardware offers a device centric protection independent of the Operating or file system. here's an example where a software based solution would fail the text below comes from a SANdisk whitepaper I'm not putting this paper forward as first source as it is itself unreferenced but it indicates the issue.

That's not true; the article doesn't mention any kind of "replacement" - it objectivly puts forward the two options: software and hardware.

Cold Boot Attack

Very recent research by a team at the highly respected Princeton1 University points to how a little known characteristic of DRAM memory can serve as a window of opportunity for a cold boot attack. DRAM memory is used to store data while the system is running. After power is removed, all content is deleted in a gradual process that can take anywhere between a few seconds and up to a few minutes. If the chip is cooled by artificial means, the content can be retained for as long as 10 minutes. This characteristic of DRAM memory enables a hacker to read the memory content by cutting power and then performing a cold boot with a malicious operating system. This is deadly for disk encryption products that rely on software means to store encryption keys. An attacker can cut power to the computer, then power it back up and boot a malicious operating system that copies the memory content. The attacker can then search through the captured memory content, find the master decryption keys and use them to start decrypting hard disk contents. To retain the content for a longer interval, the hacker can simply chill the DRAM chip before cutting power. A hardware-based encryption system is not vulnerable to a cold boot attack since it does not use the host RAM to store the keys.

This is pure FUD to promote hardware systems - if you check the facts, "cold boot" attacks require the relevant keys to be in-memory at the time the PC is switched off, and for someone to power it back on very shortly afterwards. The reality is that if the keyd are in memory, the drive is mounted, and someone can just read data straight off it anyway/ See the FreeOTFE FAQ for more details.
Technically, it's true however, so I've added a bit to this effect. Nuwewsco (talk) 08:16, 29 September 2009 (UTC)

Compromised and fixed devices

So does anyone else think the text about security fixes reads like vendor PR?Ewx (talk) 09:10, 15 February 2011 (UTC)

External links modified

Hello fellow Wikipedians,

I have just added archive links to 2 external links on USB flash drive security. Please take a moment to review my edit. If necessary, add {{cbignore}} after the link to keep me from modifying it. Alternatively, you can add {{nobots|deny=InternetArchiveBot}} to keep me off the page altogether. I made the following changes:

When you have finished reviewing my changes, please set the checked parameter below to true to let others know.

This message was posted before February 2018. After February 2018, "External links modified" talk page sections are no longer generated or monitored by InternetArchiveBot. No special action is required regarding these talk page notices, other than regular verification using the archive tool instructions below. Editors have permission to delete these "External links modified" talk page sections if they want to de-clutter talk pages, but see the RfC before doing mass systematic removals. This message is updated dynamically through the template {{source check}} (last update: 5 June 2024).

  • If you have discovered URLs which were erroneously considered dead by the bot, you can report them with this tool.
  • If you found an error with any archives or the URLs themselves, you can fix them with this tool.

Cheers.—Talk to my owner:Online 10:25, 25 January 2016 (UTC)

Firmware attacks

Are firmware attacks worth a mention?

https://lifehacker.com/how-to-check-your-usb-devices-for-unsafe-firmware-1841773522

Hcobb (talk) 17:29, 14 February 2022 (UTC)

Categories:
Talk:USB flash drive security: Difference between revisions Add topic