encryption

The Colorado prosecution of a woman accused of a mortgage scam will test whether the government can punish you for refusing to disclose your encryption passphrase.

The Obama administration has asked a federal judge to order the defendant, Ramona Fricosu, to decrypt an encrypted laptop that police found in her bedroom during a raid of her home.

Because Fricosu has opposed the proposal, this could turn into a precedent-setting case. No U.S. appeals court appears to have ruled on whether such an order would be legal or not under the U.S. Constitution's Fifth Amendment, which broadly protects … Read more

With millions of implantable medical devices in the U.S. alone, and some 300,000 more people receiving them worldwide every year, the need to protect these wireless devices from being hacked is increasingly urgent.

Wearers might soon be better protected, thanks to new work out of MIT and the University of Massachusetts-Amherst, so long as they don't mind walking around in invisible shields.

The system the research team will be proposing at the Association for Computing Machinery's Sigcomm conference in Toronto this August uses a jamming transmitter small enough to be worn as a watch or necklace.

The device would essentially be authorized to access the implant and send encrypted instructions to the transmitter (the team calls this the "shield"), which would in turn decode the encryption and relay the instructions to the implant.

Using a device that is separate from the medical implant is key for a few reasons: it allows for post-encryption in devices that are already implanted; it enables authorized emergency responders to simply remove the patient's shield in the event of emergencies; and it doesn't require the size of the implants to increase to accommodate and power the shield.

The new system expands on a technique recently developed at Stanford University that allows for sending and receiving signals in the same frequency band. In typical wireless technology, using the same frequency band interferes with the signal, but by employing three antennas positioned precise distances apart, one band can now be used.… Read more

A Russian computer forensics company, ElcomSoft, says it has developed a toolkit that can help law enforcement agencies quickly access encrypted file systems on Apple's iPhone.

ElcomSoft's toolkit is an important development as smartphone security and privacy have become a hot-button issue.

Last month, researchers discovered that the iPhone was tracking users' locations as they moved from place to place. The information was stored in an unencrypted file on the iPhone, as well as in iTunes backups. After privacy advocates complained that the iPhone was tracking user movements, Apple responded saying that it had no desire to track … Read more

Popular third-party password manager LastPass revealed yesterday that it may well have been hacked and that some e-mail usernames and master passwords may have been stolen. Does this mean it's time to migrate to another password manager, or even abandon the entire concept of online password management for a pen-and-paper solution?

Given the facts of the situation from LastPass' blog post explaining what happened, I'd say no to giving LastPass the boot, and definitely not to abandoning digital password management for a "little black book."

Leaving a paper trail is a horrendous idea for two reasons. … Read more

WinRAR is a lightweight, flexible, and easy-to-use archiving utility that can unpack most archive formats, as well as compress to both RAR and ZIP. Free to try for 40 days ($29 for single license), WinRAR is definitely top dog in the compression category.

WinRAR's interface is about as simple as it gets. Start creating (or add to) an archive by dragging and dropping your files into the interface or by browsing through the Folder Tree side panel (when enabled). From there, the most common functions are laid out in the form of colorful, mostly intuitive icons, which can all … Read more

WinRAR is a lightweight, flexible, and easy-to-use archiving utility that can unpack most archive formats, as well as compress to both RAR and ZIP. Free to try for 40 days ($29 for single license), WinRAR is definitely top dog in the compression category.

WinRAR's interface is about as simple as it gets. Start creating (or add to) an archive by dragging and dropping your files into the interface or by browsing through the Folder Tree side panel (when enabled). From there, the most common functions are laid out in the form of colorful, mostly intuitive icons, which can all … Read more

Toshiba will soon debut a series of hard drives that can automatically erase or prevent access to their own data should the drives end up in the wrong hands.

The company's new self-encrypting drive family will include a new feature that detects if the drive is connected to an unknown and undefined computer or other system. If so, the drive can either securely wipe all of its data or just deny access to that data. Customers can apply the feature to specific data on the drive and choose how and when to render the data indecipherable, according to Toshiba.… Read more

Web browsers are ground zero for Internet security threats, and the debate over responsibility for preventing those threats has resulted in a Gordian knot. The people behind the new add-on for Firefox called Cocoon (download) want to cut through debate by serving the entire Web to you via proxy. (Cocoon is also available at GetCocoon.com.)

Made by Santa Barbara, Calif., start-up Virtual World Computing, Cocoon's goal is to put the Internet on a server to prevent individual users from having to touch it, Cocoon Chief Executive Officer and co-founder Jeff Bermant said in an interview today at CNET'… Read more

A few days ago we posted an article discussing ways to reset passwords in OS X in the event of a password being lost. After this some people wrote in with concerns about the apparent ease at which password security can be overcome, since anyone with an OS installation DVD can reset account passwords and gain access to data on a system.

This is true for the most part, and is an unfortunate security quirk that can be found in many operating systems, including OS X, Windows, and Linux. Basic password security on a system can be overcome if someone … Read more