Anyone tried defshutdown?

Discussion in 'privacy technology' started by lucd, Apr 21, 2020.

  1. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    782
    Location:
    Island of Woman
    the titles says it
    I am not sure whats the purpose of the program,
    its when you get hacked and you want to lock down everything
    or in case of pol.. ekhm ekhm forces come to your home and you want to shut down and encrypt everything

    https://schiffer.tech/defshutdown.html

    at any rate, you need alot of confidence to install this because once installed it can do alot of things it seams, with encryption you must be 100% confident that it is legit app
    and not sure what purpose does it serve, it promises to protect against these:

    CVE-2016-1000339-CVE-2019-3610:
    CVE-2016-1000339: In the Bouncy Castle JCE Provider version 1.55 and earlier the primary engine class used for AES was AESFastEngine. Due to the highly table driven approach used in the algorithm it turns out that if the data channel on the CPU can be monitored the lookup table accesses are sufficient to leak information on the AES key being used. There was also a leak in AESEngine although it was substantially less. AESEngine has been modified to remove any signs of leakage (testing carried out on Intel X86-64) and is now the primary AES class for the BC JCE provider from 1.56. Use of AESFastEngine is now only recommended where otherwise deemed appropriate.


    CVE-2019-3610
    CVE-2019-3610: Data Leakage Attacks vulnerability in Microsoft Windows client in McAfee True Key (TK) 3.1.9211.0 and earlier allows local users to expose confidential data via specially crafted malware.
     
    Last edited: Apr 21, 2020
  2. hsdev

    hsdev Developer

    Joined:
    May 20, 2016
    Posts:
    102
    Basically, the device must have been legitimately unlocked and the usage time extended within a certain period of time, otherwise it will shut down unstoppably. With the Windows version, the number of failed attempts can also lead to a shutdown. Realistic scenarios are theft, especially with sensitive (company) data. Or even an unlocked session of a laptop that is torn away during operation in a public place can be covered by the optionally activatable protection.
    This application does not encrypt any data; the user must ensure this independently.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.