• chevron_right

      Raspberry Pi Bitlocker hack is a new spin on a years-old, well-documented exploit

      news.movim.eu / ArsTechnica · Monday, 12 February - 17:58 · 1 minute

    A $10 Raspberry Pi Pico-based TPM sniffing tool, designed to grab the Bitlocker disk encryption keys from some models of Lenovo laptop.

    Enlarge / A $10 Raspberry Pi Pico-based TPM sniffing tool, designed to grab the Bitlocker disk encryption keys from some models of Lenovo laptop. (credit: StackSmashing )

    Last week, a video by security researcher StackSmashing demonstrated an exploit that could break Microsoft's Bitlocker drive encryption in "less than 50 seconds" using a custom PCB and a Raspberry Pi Pico.

    The exploit works by using the Pi to monitor communication between an external TPM chip and the rest of the laptop, a second-generation ThinkPad X1 Carbon from roughly 2014. The TPM stores the encryption key that unlocks your encrypted disk and makes it readable, and the TPM sends that key to unlock the disk once it has verified that the rest of the PC's hardware hasn't changed since the drive was encrypted. The issue is that the encryption key is sent in plaintext, allowing a sniffer like the one that StackSmashing developed to read the key and then use it to unlock the drive in another system, gaining access to all the data on it.

    This is not a new exploit, and StackSmashing has repeatedly said as much. We reported on a similar TPM sniffing exploit back in 2021 , and there's another from 2019 that similarly used low-cost commodity hardware to pick up a plaintext encryption key over the same low-pin count (LPC) communication bus StackSmashing used. This type of exploit is well-known enough that Microsoft even includes some extra mitigation steps in its own Bitlocker documentation ; the main new innovation in StackSmashing's demo is the Raspberry Pi component, which is likely part of the reason why outlets like Hackaday and Tom's Hardware picked it up in the first place.

    Read 18 remaining paragraphs | Comments

    • chevron_right

      U.S. Copyright Office Finds ‘Deep Disagreement’ on Anti-Piracy Measures

      news.movim.eu / TorrentFreak · Wednesday, 21 December, 2022 - 12:13 · 3 minutes

    blocked For many years, U.S. lawmakers have considered options to update the DMCA so it can more effectively deal with today’s online copyright issues.

    Many proposals have come and gone, without resulting in any significant updates. Calls to change current legislation persist, however.

    Copyright Office’s Review and Conclusions

    Following repeated nudges from Senators Thom Tillis and Patrick Leahy, the Copyright Office launched a consultation on automated tools that online services can use to ensure that pirated content is less easily shared.

    The Copyright Office also asked stakeholders whether it’s desirable to make certain standard technical measures mandatory for online platforms. Such measures could include upload filters to block pirated content from being reuploaded.

    This week the Copyright Office presents its conclusions, which are also shared with Senators Tillis and Leahy in two letters. After reviewing thousands of responses and input from stakeholders in plenary sessions, the overall conclusion is one of clear disagreement.

    Voluntary Technical Measures

    With thousands of responses, the feedback the Office received on voluntary technical measures was overwhelming .

    Most parties agree that it’s impossible to design an error-free takedown process but disagree on what error rate is acceptable when takedowns are automated.

    Opponents of filtering technology warn that fair use and First Amendment rights are at stake. Rightsholders did not dispute that but noted that these issues don’t play a role when full copies of copyrighted content are shared.

    When it comes to the implementation of voluntary measures, the Copyright Office doesn’t have any concrete suggestions. Instead, it will continue to back existing initiatives, while facilitating dialogue between various stakeholders.

    “The public comments and the consultations confirmed that there cannot be a one-size-fits-all approach to voluntary technical measures, and that there remains a lack of consensus in this area,” the Office writes .

    “Nevertheless, the consultations served as valuable opportunities for dialogue among stakeholders, which may lead to further voluntary action. The Copyright Office proposed options to continue its role as convener of these conversations in the future.”

    Mandatory Technical Measures

    The Copyright Office also reviewed the option to expand the DMCA by making certain copyright protection measures mandatory. These could include upload filters that prevent pirated content from being reuploaded.

    As expected, many rightsholders are in favor of far-reaching, government-backed anti-piracy measures. On the other side, tech companies and the public at large warn against the potential negative consequences, including the potential impact on freedom of expression.

    The current DMCA already provides an option to formally adopt standard measures but that requires “broad consensus” among online services, which hasn’t been reached over the past two decades. Instead, many online platforms have developed their own in-house tools, such as YouTube’s Content ID system.

    Many copyright holders expressed their frustration with the current status quo and would like the Government to step in. The Copyright Office is more cautious, however.

    “While the comments share some common themes, we found a lack of consensus on the value of STMs and deep disagreement about proposals for legislative or regulatory action,” the Office writes in its letter to the Senators.

    On the one hand, copyright holders argued that Government pressure could help to overcome the lack of cooperation from online platforms. However, there are serious concerns about the impact of ‘upload filters’ on freedom of expression.

    “[M]any described technical measures that automatically take down or prevent the upload of purportedly infringing works as especially worrisome, as technology is not yet capable of accurately identifying fair use, public domain status, or even licensed uses,” the Office writes.

    Tweaking the DMCA

    All in all, the consultation elicited strong arguments, both for and against more sweeping changes. However, the Office prefers not to take drastic measures and suggests tweaking the current DMCA instead.

    Updating the definition of “standard technical measures” should help to facilitate the implementation of these tools going forward.

    “Specifically, the Office recommends that Congress amend section 512(i) to 1) clarify that the terms ‘broad consensus’ and ‘multi-industry’ require the support only of the industries directly affected by an STM; 2) state that technical measures qualify as STMs if they are recognized as such by a broad consensus of copyright owners and service providers […] and 3) set forth a list of factors use in weighing whether a particular measure imposes substantial costs and burdens.”

    Whether Senators Tillis and Leahy will follow these recommendations remains to be seen. They previously suggested a more far-reaching proposal in the form of the SMART Copyright Act of 2022 .

    The Copyright Office’s letters to the Senators are available here ( VTM / STM )

    From: TF , for the latest news on copyright battles, piracy and more.

    • chevron_right

      ‘Make VPN Detection Tools Mandatory to Fight Geo-Piracy’

      news.movim.eu / TorrentFreak · Wednesday, 8 June, 2022 - 20:11 · 3 minutes

    blocked The United States is actively exploring options to update copyright law to bring it into line with the current online environment.

    Most recently, the Copyright Office is looking into the option of making certain standard technical measures (STMs) mandatory for online platforms. This could include upload filters to block pirated content from being reuploaded.

    The current DMCA already provides an option to formally adopt STMs but that requires “broad consensus” among online services, which hasn’t been reached over the past two decades. Instead, many online platforms have developed their own in-house tools, such as YouTube’s Content ID system.

    Copyright Office Inquiry

    Through a series of public consultations, the Copyright Office is asking for input on the effectiveness, desirability, and feasibility of mandatory protection measures.

    Most copyright holders are supportive of the idea. They feel that without proper incentives, some online services will fail to address the piracy problem. Opponents of the idea, meanwhile, point out that it may lead to all sorts of problems and may negatively affect free expression .

    Much of the discussion thus far has focused on tools and technologies that detect and filter copyright-infringing content. However, this week we spotted another submission that promotes a different type of measure, which isn’t necessarily less controversial.

    Mandatory VPN Detection?

    In a letter to the Copyright Office, GeoComply CEO Anna Sainsbury suggests that VPN detection tools can play an important role as well.

    “As the U.S. Copyright Office explores potential technologies and solutions to include as part of the Standard Technical Measures under section 512, we respectfully suggest the inclusion of accurate and effective VPN detection tools to ensure the full protection of copyrighted works.”

    VPN detection tools are already widely used by major streaming services. They include Netflix, which was one of the pioneers on this front. The goal of these tools is to prevent ‘geo-piracy’, which is carried out by people pretending to be in a location that differs from where they actually are.

    This type of protection is important for rightsholders to enforce geographical licenses. The fact that VPNs can also be used for legitimate purposes does not prevent platforms from banning them outright.

    Bypassing Restrictions is Easy

    According to GeoComply this type of geo-piracy is quite common and in many cases, rather effective.

    “[W]ith hundreds of readily available VPNs on the market, the most common way for an individual to access geo-restricted content is to simply spoof their IP address using a VPN or DNS proxy,” Sainsbury writes.

    “There are a number of ‘free’ subscription-based VPNs/proxies that enable users to change their IP address to appear to be located in a different country or territory,” GeoComply’s CEO adds.

    Of course, GeoComply has the answer to this problem. The company says that its GeoGuard service can detect and block VPN and proxy traffic with 99.6% accuracy. The service has a database of problematic IP addresses but also uses Wifi access point data to check if locations are “spoofed.”

    geoguard

    Although many online streaming platforms already use VPN blocking tools, GeoComply believes that it would be beneficial to classify them as mandatory protection technologies under the DMCA.

    Due to the nature of the service, this would probably only apply to online platforms that have to enforce geographical licenses. This makes it a limited tool that won’t apply across the board.

    Marketing Pitch

    Needless to say, GeoComply is far from objective and the letter reads like a marketing pitch at times.

    “By integrating GeoComply’s solutions into their processes and risk engines, broadcasters and OTTs are able to stop-geo-piracy and ensure rightsholders are receiving the full value for their content,” Sainsbury notes.

    It is clear that ‘geo-piracy’ is a concern for copyright holders but whether enforcing VPN detection should be done through the law is another question. For now, GeoComply is the only stakeholder to bring up the issue; none of the rightsholders have mentioned it.

    From: TF , for the latest news on copyright battles, piracy and more.