memory retention attacks

In my post on implementing an in-memory encryption scheme to protect sensitive information, I referenced a mitigation strategy called a Boojum. It is described by Bruce Schneier, Niels Ferguson and Tadayoshi Kohno in their book, Cryptography Engineering: Design Principles and Practical Applications.

A number of people asked me about the mechanisms of the attack and the scheme, so I am including the relevant parts here. It is an excellent resource and I recommend that you go and buy it.

• [17] Jurjen Bos. Booting problems with the JEC computer. Personal communications, 1983. [Page 125]
• [24] Lewis Carroll. The Hunting of the Snark: An Agony, in Eight Fits. Macmillan and Co., London, 1876. [Page 126]
• [32] Giovanni Di Crescenzo, Niels Ferguson, Russel Impagliazzo, and Markus Jakobsson. How to Forget a Secret. In Christoph Meinel and Sophie Tison, editors, STACS 99, volume 1563 of Lecture Notes in Computer Science, pages 500-509. Springer-Verlag, 1999.
• [57] Peter Gutmann. Secure Deletion of Data from Magnetic and Solid-State Memory. In USENIX Security Symposium Proceedings, 1996. Available from http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.html.
• [59] J. Alex Halderman, Seth D. Schoen, Nadia Heninger, William Clarkson, William Paul, Joseph A. Calandrino, Ariel J. Feldman, Jacob Appelbaum, and Edward W. Felten. Lest We Remember: Cold Boot Attacks on Encryption Keys. In USENIX Security Symposium Proceedings, pages 45-60, 2008.

• 2024-07-23 : : how monzo generates sensitive secrets for its banking platform
• 2022-02-15 : : securely delegating trust with signatures and key management
• 2020-12-16 : : rosen: censorship-resistant proxy tunnel
• 2020-02-20 : : plausibly deniable encryption
• 2019-07-18 : : encrypting secrets in memory
• 2019-06-27 : : mutable strings in go
• 2019-05-02 : : to slice or not to slice
• 2017-08-03 : : memory security in go
• 2017-07-30 : : quantum key-exchange