论文信息 - Cold Boot Attacks on DDR2 and DDR3 SDRAM

Cold Boot Attacks on DDR2 and DDR3 SDRAM

Cold boot attacks provide a means to obtain a dump of a computer's volatile memory even if the machine is locked. Such a dump can be used to reconstruct hard disk encryption keys and get access to the content of Bit locker or True crypt encrypted drives. This is even possible, if the obtained dump contains errors. Cold boot attacks have been demonstrated successfully on DDR1 and DDR2 SDRAM. They have also been tried on DDR3 SDRAM using various types of equipment but all attempts have failed so far. In this paper we describe a different hardware setup which turns out to work for DDR3 SDRAM as well. Using this setup it will be possible for digital forensic investigators to recover keys from newer machines that use DDR3 SDRAM.

[1] Tilo Müller,et al. On the Practicability of Cold Boot Attacks , 2013, 2013 International Conference on Availability, Reliability and Security.

[2] Ariel J. Feldman,et al. Lest we remember: cold-boot attacks on encryption keys , 2008, CACM.

[3] Feng Lin,et al. DRAM Circuit Design: Fundamental and High-Speed Topics , 2007 .

[4] Craig Gentry,et al. Fully homomorphic encryption using ideal lattices , 2009, STOC '09.

[5] Brent Keeth,et al. Dram Circuit Design: Fundamental High-Speed Topics , 2008 .

[6] Onur Mutlu,et al. An experimental study of data retention behavior in modern DRAM devices: implications for retention time profiling mechanisms , 2013, ISCA.