Saturday, May 10, 2008

COFEE from Microsoft ?

Microsoft handed over Computer Online Forensic Evidence Extractor (COFEE) to Law enforcement agencies Digital Forensics Investigators, It is a USB drive that has about 150 tools that can help Forensics Investigators to do quick incident reponse, collect live data and grab the important keys from the memory etc.

But what is this ?

"The growing use of encryption software -- like Microsoft's own BitLocker -- by cyber criminals has led Microsoft to develop a set of tools that law enforcement agents can use to get around the software, executives at the company said."

Did Microsoft Plant a Backdoor in the BitLocker Encryption algorithm and even gave the decryption keys to these folks ?

If yes, it wont take much time for the tools on USB to be published by hackers and above all render BitLocker Encryption useless, Good Vista adoption is slow otherwise more enterprise users using Bitlocker would be at risk and at this point in time I guess there might be few getting affected by this including Steve Ballmer :)

-abhiz

No comments: