[vc_row][vc_column][vc_column_text]Although Cold Boot Attacks are considered to be somewhat of an antiquated method, largely due to the need for an attacker to have physical access to the machine, they still represent a threat to unprotected systems.<\/p>\n

By definition, a Cold Boot Attack is a type of side channel\u00a0attack\u00a0in which an attacker with physical access to a computer is able to retrieve encryption keys from a running operating system after using a\u00a0cold reboot\u00a0to restart\u00a0the machine. Known since 2008, these attacks target data memory remanences, sometimes containing sensitive and personal information, on a CPU’s RAM which can linger anywhere from a few seconds to a few minutes after power has been removed. By utilizing a removable disk, attackers are able to upload sensitive data and viola, you have a security breach.<\/p>\n

Many modern systems have security countermeasures to prevent these types of attacks; by memory scrambling or encrypting RAM the ability to steal encryption keys is essentially eliminated, but a new threat could threaten most modern computers according to experts.<\/p>\n

Researchers from F-Secure, a Finnish company, have found new methods to\u00a0disable current cold boot attack firmware security measures. This attack still requires the physical access that previous cold boot attacks utilized, but the threat is still present.\u00a0The company is positioned to release additional information on their findings at upcoming events and conferences.<\/p>\n

In the meantime, companies looking to protect their data can look to modernize security functionality of their systems by following guidelines and requirements laid out within\u00a0FIPS 140-2<\/a>. The FIPS requirements for level 3<\/a> require, in addition to\u00a0all security measures from level 1 and 2, identity-based authentication, physical security mechanisms for tamper detection and tamper response, and\u00a0zeroization of keys to destroy this type of data. Implementing these changes helps to prevent cold boot attacks from ever occurring.<\/p>\n

For more information on engineering your product to meet Federal and regulated industry security requirements, schedule time to speak to a Corsec engineer<\/a>.[\/vc_column_text][vc_column_text]<\/p>\n

About Corsec Security, Inc.<\/strong><\/h5>\n

For two decades Corsec\u00a0<\/strong>has\u00a0assisted companies through the IT security certification process for\u00a0FIPS 140-2<\/a><\/strong>,\u00a0Common Criteria<\/strong><\/a>\u00a0(CC) and the\u00a0DoD\u2019s APL<\/strong><\/a>. We are\u00a0a\u00a0privately owned company focused on partnering with organizations worldwide to assist with the process of security certifications and validations. Our\u00a0certification methodology helps open doors to new markets and increase revenue for clients with products ranging from mobile phones to satellites. Our\u00a0broad knowledge safeguards against common pitfalls and thwarts delays, translating to a swift and seamless path to certification. Corsec has created the benchmark for providing business leaders with fast, flexible access to industry knowledge on security certifications and validations.<\/p>\n

[\/vc_column_text][vc_column_text]<\/p>\n

Connect With Us<\/strong><\/h5>\n

\n

Stay up to date with Corsec as we bring you all the most recent updates to the standards, certifications, and requirements \u2013\u00a0Subscribe<\/a><\/span><\/p>\n<\/div>\n

[\/vc_column_text][vc_column_text]<\/p>\n

###<\/p>\n

[\/vc_column_text][vc_separator][vc_column_text]<\/p>\n

Press Contact:<\/a><\/strong><\/h5>\n

\n

\n

Jake Nelson<\/strong>
\nCorsec Director of Marketing
\njnelson@corsec.com<\/p>\n<\/div>\n<\/div>\n

<\/div>\n

[\/vc_column_text][vc_column_text]<\/p>\n

\u00a0\u00a0\u00a0\u00a0\u00a0<\/a>\u00a0\u00a0\u00a0\u00a0\u00a0<\/a><\/a><\/h4>\n

<\/div>\n

[\/vc_column_text][\/vc_column][\/vc_row]<\/p>\n<\/div>","protected":false},"excerpt":{"rendered":"

[vc_row][vc_column][vc_column_text]Although Cold Boot Attacks are considered to be somewhat of an antiquated method, largely due to the need for an attacker to have physical access to the machine, they still represent a threat to unprotected … <\/p>\n

Read more<\/a><\/p>\n","protected":false},"author":2,"featured_media":16676,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5,3,91],"tags":[83,114,99,109,4,133,95,39],"class_list":["post-16213","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-fips-140-2","category-news","category-security","tag-certification-roi","tag-cybersecurity","tag-data-breaches","tag-device-security","tag-fips-140-2","tag-it-security","tag-security","tag-security-certifications","infinite-scroll-item","generate-columns","tablet-grid-50","mobile-grid-100","grid-parent","grid-50","no-featured-image-padding"],"yoast_head":"\n