Truecrypt easily decrypted now?

http://it.tmcnet.com/news/2010/03/30/4700389.htm

FUGGING WHAT. Can anyone confirm this?

 

R3XNebular, this attack requires that “the target computer is turned on, and the encrypted volume is mounted” (see here) -- i.e., the adversary has physical possession of your running PC.

 

Firstly you need to take control of your emotions and not lose control like a young kid and use filthy language.

Secondly, you need to understand the full picture as TC is not decrypted unless its mounted and PC/Laptop turned on. Understand?

 

This is a side-channel attack, not a brute force attack or any other against the TrueCrypt encryption algorithm. In this case, the encryption key is recovered through techniques of memory dump.

Another thing, this type of attack may also have success with the computer off (but only until a certain time while the vestiges remain in physical memory).

 

Which effectively makes this 'old news' in a way. I haven't looked at the TC forums, but I'm going to assume that their response, if the threads even last and aren't deleted goes something like this:

"This in no way is a weakness against TrueCrypt as the container must be mounted for this vector to work, and this is something TrueCrypt was never meant to prevent, and can't be prevented."

 

I've just discovered another shocking vulnerability and wish to make the following announcement: If you step out of your late-model Toyota Camry but leave your doors unlocked, your keys in the ignition and the motor running, somebody else could step into your car and drive it away! This demonstrates (possibly for the first time) that Toyota Camry door and ignition locks can easily be defeated.

 

No mean what? I am 13 year old

 

You're pretty smart for a 13 yr old.

 

.
Interesting. Will it become part of the larger "recall"?? Good analogy though.