Direct Memory Access Vulnerabilities with Sami Laiho
DMA vulnerabilities have been around for ten years - are your machines in danger? Richard talks to Sami Laiho about his experiences trying to close the exploit that is Direct Memory Access. This technology for rapid data transfer has been available for years with FireWire and Thunderbolt, and now exists in USB 3.1 as well. The problem is that it has been two-way memory access, so connecting two machines together via FireWire can allow the attacking machine to steal any memory it wants, like your BitLocker encryption key. Only in Windows 10 are we starting to see protection in place, and there's more to come. Scary stuff!
Audio is streamed directly from the publisher (cdn.simplecast.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
DMA vulnerabilities have been around for ten years - are your machines in danger? Richard talks to Sami Laiho about his experiences trying to close the exploit that is Direct Memory Access. This technology for rapid data transfer has been available for years with FireWire and Thunderbolt, and now exists in USB 3.1 as well. The problem is that it has been two-way memory access, so connecting two machines together via FireWire can allow the attacking machine to steal any memory it wants, like your BitLocker encryption key. Only in Windows 10 are we starting to see protection in place, and there's more to come. Scary stuff!