难以打破的信息安全系统.pptx

;我们所说的难以打破的安全系统;难以打破的安全系统;思考;内存操作的危害;获取内存数据的方法;冷启动攻击;攻击者有物理访问 冷启动攻击是一种新型的旁路攻击(sidechanelatack)。 利用冷启动攻击，攻击者可以对其进行物理访问的正在运行的 计算机执行冷启动操作以绕 过其软硬件防护机制，获取正在运 行的计算机的内存快照，并进一步从快照中提取出密钥 等敏感 信息。 冷启动攻击Cold-Boot Attack 内存条上的数据信息，断电之后仍然存在 数分钟~数小时 [低温] Lest We Remember: Cold Boot Attacks on Encryption Keys USENIX Security 2008 攻击者直接取下内存条，读取数据 在手机上，攻击同样存在 FROST: Forensic Recovery of Scrambled Telephones, ACNS 2013;;虚拟化攻击;虚拟化内存获取与修改;;虚拟化内存获取与修改;;;;虚拟化内存获取与修改;;总线攻击（DMA）;DMA总线攻击;;; Device;总线攻击（JTAG）;JTAG攻击;攻击场景;;攻击防御;攻击防御;Breuk, Rory, and Albert Spruyt. "Integrating DMA attacks in Metasploit." Sebug: http://sebug. net/paper/Meeting-Documents/hitbsecconf2012ams D. Vol. 2. 2012. Carrier, Brian D., and Joe Grand. "A hardware-based memory acquisition procedure for digital investigations." Digital Investigation 1.1 (2004): 50-60. G?tzfried, Johannes, and Tilo Müller. "Analysing Android's Full Disk Encryption Feature." JoWUA 5.1 (2014): 84-100. C 2007 (2007): 1-18. Guan, Le, et al. "Protecting private keys against memory disclosure attacks using hardware transactional memory." 2015 IEEE Symposium on Security and Privacy. IEEE, 2015. Halderman, J. Alex, et al. "Lest we remember: cold-boot attacks on encryption keys." Communications of the ACM 52.5 (2009): 91-98. Rolles, Rolf. "Unpacking virtualization obfuscators." 3rd USENIX Workshop on Offensive Technologies.(WOOT). 2009. Walters, Aaron, and Nick L. Petroni. "Volatools: Integrating volatile memory into the digital investigation process." Black Hat D;谢谢聆听！