buskill-app icon indicating copy to clipboard operation
buskill-app copied to clipboard

Published 20 hours ago verified publisher icon BusKill

Fill RAM with random on trigger

Open mrx23dot opened this issue 3 years ago • 3 comments
trafficstars

Attacker can recover RAM content (passwords/keys) by freezing it with spray, even after power down! I would recommend filling it with random first, or at least misleading valid words into the free space if previous is not possible because of OS.

mrx23dot avatar Jan 07 '22 09:01 mrx23dot

Hi @mrx23dot thanks for the feature request!

Currently the app can only lock your screen, so we're pretty far from reaching a point to where this would make sense. First we need to finish #16 and #14. Then implement a shutdown trigger on all 3x platforms.

maltfield avatar Jan 18 '22 19:01 maltfield

posix solution: https://askubuntu.com/questions/153245/how-to-wipe-ram-on-shutdown-prevent-cold-boot-attacks https://superuser.com/questions/464297/wipe-ram-on-shut-down-to-prevent-cold-boot-attack

it sounds it's easier if we fill the RAM with misinformation like 1GB of words, see "how to generate english looking words"

mrx23dot avatar Jan 19 '22 15:01 mrx23dot

In the meantime, I recommend using the BusKill cable in-line with TAILS to attain this Emergency Shutdown w/ RAM Wiping functionality.

https://tails.boum.org/contribute/design/memory_erasure/

maltfield avatar Jan 19 '22 17:01 maltfield