BitLocker encryption broken in 43 seconds with sub-$10 Raspberry Pi Pico
— key can be sniffed when using an external TPM | Tom's Hardware
<https://www.tomshardware.com/pc-components/cpus/youtuber-breaks-bitlocker-encryption-in-less-than-43-seconds-with-sub-dollar10-raspberry-pi-pico>

..... more .....

Bitlocker is one of the most easily accessible encryption solutions
available today, being a built-in feature of Windows 10 Pro and Windows
11 Pro that's designed to secure your data from prying eyes. However,
YouTuber stacksmashing demonstrated a colossal security flaw with
Bitlocker that allowed him to bypass Windows Bitlocker in less than a
minute with a cheap sub-$10 Raspberry Pi Pico, thus gaining access to
the encryption keys that can unlock protected data. After creating the
device, the exploit only took 43 seconds to steal the master key.

To do this, the YouTuber took advantage of a design flaw found in many
systems that feature a dedicated Trusted Platform Module, or TPM. For
some configurations, Bitlocker relies on an external TPM to store
critical information, such as the Platform Configuration Registers and
Volume Master Key (some CPUs have this built-in). For external TPMs, the
TPM key communications across an LPC bus with the CPU to send it the
encryption keys required for decrypting the data on the drive.

..... more ....

Related:

bitlocker broken stackmashing - YouTube
<https://www.youtube.com/results?search_query=bitlocker+broken+stackmashing>

On 2/8/2024 12:07 PM, Mr. Man-wai Chang wrote:
> BitLocker encryption broken in 43 seconds with sub-$10 Raspberry Pi Pico — key can be sniffed when using an external TPM | Tom's Hardware
> <https://www.tomshardware.com/pc-components/cpus/youtuber-breaks-bitlocker-encryption-in-less-than-43-seconds-with-sub-dollar10-raspberry-pi-pico>
>
> Bitlocker is one of the most easily accessible encryption solutions available today, being a built-in feature of Windows 10 Pro and Windows 11 Pro that's designed to secure your data from prying eyes. However, YouTuber stacksmashing demonstrated a colossal security flaw with Bitlocker that allowed him to bypass Windows Bitlocker in less than a minute with a cheap sub-$10 Raspberry Pi Pico, thus gaining access to the encryption keys that can unlock protected data. After creating the device, the exploit only took 43 seconds to steal the master key.
>
> To do this, the YouTuber took advantage of a design flaw found in many systems that feature a dedicated Trusted Platform Module, or TPM. For some configurations, Bitlocker relies on an external TPM to store critical information, such as the Platform Configuration Registers and Volume Master Key (some CPUs have this built-in). For external TPMs, the TPM key communications across an LPC bus with the CPU to send it the encryption keys required for decrypting the data on the drive.
>
> Related:
>
> bitlocker broken stackmashing - YouTube
> <https://www.youtube.com/results?search_query=bitlocker+broken+stackmashing>

So you unplug the TPM and stick it in your pocket.

You can't sniff something, that is not there.

Paul

On 9/2/2024 2:15 am, Paul wrote:
>
> So you unplug the TPM and stick it in your pocket.
> You can't sniff something, that is not there.

Just call Micro$oft! Executive Order from US President (DeepFake A.I.
voice)! :)

On Fri, 9 Feb 2024 01:07:43 +0800, "Mr. Man-wai Chang"
<toylet.toylet@gmail.com> wrote:

>BitLocker encryption broken in 43 seconds with sub-$10 Raspberry Pi Pico
>— key can be sniffed when using an external TPM | Tom's Hardware
><https://www.tomshardware.com/pc-components/cpus/youtuber-breaks-bitlocker-encryption-in-less-than-43-seconds-with-sub-dollar10-raspberry-pi-pico>
>
>
>.... more .....
>
>
>Bitlocker is one of the most easily accessible encryption solutions
>available today, being a built-in feature of Windows 10 Pro and Windows
>11 Pro that's designed to secure your data from prying eyes. However,
>YouTuber stacksmashing demonstrated a colossal security flaw with
>Bitlocker that allowed him to bypass Windows Bitlocker in less than a
>minute with a cheap sub-$10 Raspberry Pi Pico, thus gaining access to
>the encryption keys that can unlock protected data. After creating the
>device, the exploit only took 43 seconds to steal the master key.
>
>To do this, the YouTuber took advantage of a design flaw found in many
>systems that feature a dedicated Trusted Platform Module, or TPM. For
>some configurations, Bitlocker relies on an external TPM to store
>critical information, such as the Platform Configuration Registers and
>Volume Master Key (some CPUs have this built-in). For external TPMs, the
>TPM key communications across an LPC bus with the CPU to send it the
>encryption keys required for decrypting the data on the drive.
>
>.... more ....
>
>
>
>
>Related:
>
>
>bitlocker broken stackmashing - YouTube
><https://www.youtube.com/results?search_query=bitlocker+broken+stackmashing>

Requires physical access and a specific configuration with a discrete
TPM? You physically remove it (can't be soldered in)? And "breaking"
Bitlocker then requires the keys? (Which is all they're doing. They're
lifting the keys.)

Headline is a little clickbaity. Then again, it didn't say "Bitlocker
*encryption*." Oh yes. It did. That is just wrong. Nobody "broke" the
encryption. They found a workaround to steal the proper means of
decrypting it. Evil maid is going to have to break out her spludger to
get into that laptop. Bad headline is bad.

All my TPMs are on-die anyway. Corporate customers have them soldered
down, AFAIK. Whom exactly does this affect, TPM enthusiasts and early
adopters?

--
Zag

No one ever said on their deathbed, 'Gee, I wish I had
spent more time alone with my computer.' ~Dan(i) Bunten