Bypass Hardware Disk Encryption on SSD Drives

Windows Articles

Configure Samba File share Services with Ubuntu 20.04 LTS

Here, Today! let's discuss samba file share service with Ubuntu 20.04 LTS. If you need to share files between Linux and MS Windows...

Install Matomo on Ubuntu 20.04

Hello, friends. In this post, you will learn how to install Matomo on Ubuntu 20.04. It's quite useful to measure the traffic to our...

How to change DNS in Windows 10

Hi! Today we will talk a bit about networks. In fact, we will touch on a topic related to connectivity. Specifically we will see...

The new Windows 10 file explorer will arrive with 21H2 update.

Hello! Microsoft does not stop working (except at Christmas) to continue polishing to Windows 10. In fact, users are gradually receiving the 20H2 update....

How to create an FTP server in Android

Hello! How are you? Currently sharing files from your PC to Android can be more comfortable and easy, without the need to use a...

Hardware protection is one of the most important parts of today’s computing. It ensures the utmost security on the system, leaving the least possible option for the hacker(s)/crook(s) to get our valuable data. Recently, security researchers found flaws in the popular SSDs that poses a serious threat in data protection.

Check out Windows tweaks for saving up your SSD’s write cycles.

The flaw

Using the flaw in the modern, popular SSDs like Samsung and Crucial, security researchers were able to bypass hardware decryption without a password. Carlo Meijer and Bernard van Gastel from Radboud University conducted the research.

They successfully modified the firmware or used a debugging interface to modify the password validation routine in SSD drives and ultimately, decrypt “hardware encrypted” data without password. The test was successful in getting data out of Crucial MX 100, MX 200, MX 300 and Samsung 840 EVO, 850 EVO, T3 Portable, T5 Portable etc.

According to the report, the researchers were able to reverse engineer the firmware of those SSDs. In theory, the hardware encryption was similar to software implementations. In reality, many of those implementations have critical weaknesses as many models allow complete recovery of the data without any knowledge of any secret.

Windows BitLocker is also vulnerable to this issue as it enables hard drive encryption by default.

How the flaw works

In the case of Crucial MX 100, MX 200 and Samsung T3 Portable, the researchers, using the device’s JTAG debugging interface, successfully modified the password validation routine. Then, the routine would allow access to the data regardless of right/wrong password.

In the case of Crucial MX 300, researchers had to use a modified firmware as the JTAG debugging interface was disabled by default. After enabling, the same method decrypted the password without any problem.

Samsung 840 EVO and 850 EVO SSDs were a bit difficult to crack. Depending on the SED specification in action, the researchers had to connect to the JTAG debug port or issue a wear-level concern, allowing them to recover the cryptographic secrets required for unlocking the drive.

How to stay secure

The SSDs that are currently on the market aren’t secure enough to protect your data once crook(s) get their hands on. Before you dump an SSD, you have to make sure that the drive doesn’t contain any important data.

If you’re using BitLocker, make sure that you disable the hardware encryption feature from “Group Policy Editor”.

Go to Computer Configuration >> Administrative Templates >> Windows Components >> BitLocker Drive Encryption >> Operating System Drives >> Configure use of hardware-based encryption for operating system drives.

 

Change the value to “Disabled”.

More articles

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest article

Configure Samba File share Services with Ubuntu 20.04 LTS

Here, Today! let's discuss samba file share service with Ubuntu 20.04 LTS. If you need to share files between Linux and MS Windows...

Install Matomo on Ubuntu 20.04

Hello, friends. In this post, you will learn how to install Matomo on Ubuntu 20.04. It's quite useful to measure the traffic to our...

How to change DNS in Windows 10

Hi! Today we will talk a bit about networks. In fact, we will touch on a topic related to connectivity. Specifically we will see...

The new Windows 10 file explorer will arrive with 21H2 update.

Hello! Microsoft does not stop working (except at Christmas) to continue polishing to Windows 10. In fact, users are gradually receiving the 20H2 update....

How to create an FTP server in Android

Hello! How are you? Currently sharing files from your PC to Android can be more comfortable and easy, without the need to use a...
x