Memory forensics

Grant Olson kgo at
Fri Mar 5 23:04:27 CET 2010

On 3/5/2010 4:30 PM, Robert J. Hansen wrote:
> For quite some time we've known that hibernation files present risks for
> information security.  However, there are always those who say "until I
> see an actual demonstration, I won't believe it."
> The upshot: we now have an actual demonstration.  The takeaway is that
> you should be very, very careful about hibernating your computer while
> passphrases are cached, or while GnuPG is actively processing a file.
That article was a little vague.  And I don't know much about memory
forensics in practice.  Do you know that it actually was a hibernation
file and not swap space?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 552 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20100305/64a5dc32/attachment.pgp>

More information about the Gnupg-users mailing list