| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <4BB3ABD9.9010307@csuohio.edu> Date: Wed, 31 Mar 2010 16:08:57 -0400 From: Michael Holstein <michael.holstein@...ohio.edu> To: "Ivan ." <ivanhec@...il.com> Cc: full-disclosure <full-disclosure@...ts.grok.org.uk> Subject: Re: Victorinox Launches Super-Secure USB Stick > Victorinox says that during the Secure's launch event in London, the > company offered a team of professional hackers close to $150,000 if > they could get past the Secure's security measures. No, they offered them a set amount of time to do it. In practical terms for a "lost/stolen USB stick" this is a totally useless test, and is 100% marketing fluff. If they were really serious, they would have published the full specifications and provided a dozen sample units for a reasonable entry fee to anyone that wanted to try. They also wouldn't be the first manufacturer to severely misunderstand the correct implementation of AES : http://www.h-online.com/security/news/item/NIST-certified-USB-Flash-drives-with-hardware-encryption-cracked-895308.html Cheers, Michael Holstein Cleveland State University _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists