Attack encrypted systems overview
Encryption was originally used only for the transfer of confidential information. However, subsequently the information was encrypted for the purpose of storing it in unreliable sources.
The author of this article had to deal with settings that had transparent full disk encryption and were pretty tough. However, the common problem with all settings is that the disk encryption software does not seal the encryption keys with a hardware security device such as TPM. This attacker allows you to create an image from the hard drive and download this image on another computer. If the attacker also takes possession of the case in which the encryption keys are stored, it becomes possible to load the disk image and completely control the victim’s disk in an unreliable environment.
We’ll look at some of the things that you can do when you can load the disk image of an otherwise impenetrable environment in this blog post.