From the idea to the gadget. The way of the "Samurai" in Russia
Hello!
I Guess everyone ran with the idea to develop some "device." For example, the machine on the Linux or IRobot which not only vacuums, but also cuts the grass at the cottage and collects socks around the room.
We decided to tell you how the idea of a device we reached its serial production in Russia.
Anciently it was in Russia: "While the cock does not bite, a peasant will not cross" So one day lost the flash drive that was very important data. Moreover, their ascent could suffer customers, partners and the General image of the company media stick. And we were asked to develop the most secure USB flash drive.
At the time the foreign counterparts were not, and if it was something like that, the credibility of such a device in Russia.
And went brainstorming:
Password
The flash drive lying on the Desk in the office, in your locker at the gym. Anyone can go and quickly copy the data from it. For example, pocket duplicator
The password must be entered exactly the case. As it cannot be caught by keyloggers, virtual keyboard is not all OS will start.
And abroad:
The loader is a cross-platform java applet. When sticking in the USB from Windows and MacOS autorun launches the java applet and the virtual keypad appears. In General, all good cons, that's not always run. And any modern Trojan steals passwords, making a screenshot around the mouse while clicking. For example a "cajamurcia" (video)
Security password
Well, doing more than 5 incorrect entries of the password and data is destroyed. The password is stored in the microcontroller, which already allows or denies access to the NAND.
And abroad:
There is a line of standard microcontrollers ATMEL ATSAM3U . This is used in most flash drives and password is a standard feature. If the password is entered incorrectly, the controller of the blocking memory access, but does not remove information from there. What is a scary looking item 4.
Want yet another password! Password under duress
What to do if the flash drive in the hands of the enemy and you are forced to say the password. And you know what, "termorektalny cryptanalysis" by the 5th wrong password you can't handle. Need a password under duress by entering a delete information.
And abroad:
There are very few specialists in termorektalny the cryptanalysis. And such drives do not provide.
password Bypass
What if the enemy knowing about these passwords, it simply disassemble and get access to the memory directly? For example special Flash reader.
Mmm... then all encrypted.
And abroad:
Many of these there sin, not negotiating about it laterally. So if the flash drive without encryption, it cost a penny. Serious data on it can not be worn, even home video!
Deletion
Recovery
"You want to go or have cheap"
Just need to understand that if somehow you can restore the information, will take advantage of the attackers. This dismisses the possibility.
And abroad:
It's all very interesting. Different solutions still have a universal password. Only they call it "service". Ie you can come with the stick and to convince them that you bought it, and all the information you will discover.
Also, there is the strange decision – if you are adding files on a flash drive, it syncs with cloud storage and store all data there. What computer was inserted the flash drive, what files are added and copy, etc. as well when you contact the service you will restore data.
Reusable
To remove information destroying the media (burn, explode, melt chemicals, etc.). But to carry in his pants pocket, a piece of explosive...not all boys are to be solved. Chemistry can spread, etc. So the decision dangerous.
Yes, and I would not want to buy disposable stick for a lot of money. And how to check it?
The market is similar to a disposable stick.
To the question: "How can I test it ?"
I answered the producers: "Buy 5pcs. 3pcs start and You will see that the other 2 PCs work!"
Broken sector and multiple formatting
Many people know that the flash media (SSD drives, SD cards, usb flash) always has a backup memory for bad sectors. For example, a USB flash drive in 8 GB and the chip 12 GB. The remaining 4Gb are being used, when it begins to fail some sector. There just is information with suspicious sector to a normal, locked and away from sin.
It turns out that if you repeatedly format a flash drive or SSD drive, there will still be pieces of information because access to them is closed. But the same pc-3000flash it all is read on hurrah.
Autonomy
USB flash drive is a mobile device and the destruction should be too mobile. Decided to install a battery 12V.
Encryption
Well, if we all encrypt, then use it. We first remove the encryption keys, and then send commands to the flash drive on mashing sectors.
The encryption keys are in memory of the controller, and to get them impossible. You can only reset and generate a new one.
Here's an idea! The following articles will talk about the production design, manufacturing buildings and in General the practical side of the question.
Difficulties quite a lot on this I will write several articles.
Now we have manufactured a secure flash drive under the brand "Samurai" samurai24.ru located in techno-Park "Strogino".
PS: This is our first article if what not so write, we will try to improve the quality of articles.
Sources:
data Recovery from Flash drives
Pocket duplicator
Keyloger virtual keyboard
flash Drive password
Article based on information from habrahabr.ru
I Guess everyone ran with the idea to develop some "device." For example, the machine on the Linux or IRobot which not only vacuums, but also cuts the grass at the cottage and collects socks around the room.We decided to tell you how the idea of a device we reached its serial production in Russia.
Anciently it was in Russia: "While the cock does not bite, a peasant will not cross" So one day lost the flash drive that was very important data. Moreover, their ascent could suffer customers, partners and the General image of the company media stick. And we were asked to develop the most secure USB flash drive.
At the time the foreign counterparts were not, and if it was something like that, the credibility of such a device in Russia.
And went brainstorming:
Password
The flash drive lying on the Desk in the office, in your locker at the gym. Anyone can go and quickly copy the data from it. For example, pocket duplicator
The password must be entered exactly the case. As it cannot be caught by keyloggers, virtual keyboard is not all OS will start.
And abroad:
The loader is a cross-platform java applet. When sticking in the USB from Windows and MacOS autorun launches the java applet and the virtual keypad appears. In General, all good cons, that's not always run. And any modern Trojan steals passwords, making a screenshot around the mouse while clicking. For example a "cajamurcia" (video)
Security password
Well, doing more than 5 incorrect entries of the password and data is destroyed. The password is stored in the microcontroller, which already allows or denies access to the NAND.
And abroad:
There is a line of standard microcontrollers ATMEL ATSAM3U . This is used in most flash drives and password is a standard feature. If the password is entered incorrectly, the controller of the blocking memory access, but does not remove information from there. What is a scary looking item 4.
Want yet another password! Password under duress
What to do if the flash drive in the hands of the enemy and you are forced to say the password. And you know what, "termorektalny cryptanalysis" by the 5th wrong password you can't handle. Need a password under duress by entering a delete information.
And abroad:
There are very few specialists in termorektalny the cryptanalysis. And such drives do not provide.
password Bypass
What if the enemy knowing about these passwords, it simply disassemble and get access to the memory directly? For example special Flash reader.
Mmm... then all encrypted.
And abroad:
Many of these there sin, not negotiating about it laterally. So if the flash drive without encryption, it cost a penny. Serious data on it can not be worn, even home video!
Deletion
Recovery
"You want to go or have cheap"
Just need to understand that if somehow you can restore the information, will take advantage of the attackers. This dismisses the possibility.
And abroad:
It's all very interesting. Different solutions still have a universal password. Only they call it "service". Ie you can come with the stick and to convince them that you bought it, and all the information you will discover.
Also, there is the strange decision – if you are adding files on a flash drive, it syncs with cloud storage and store all data there. What computer was inserted the flash drive, what files are added and copy, etc. as well when you contact the service you will restore data.
Reusable
To remove information destroying the media (burn, explode, melt chemicals, etc.). But to carry in his pants pocket, a piece of explosive...not all boys are to be solved. Chemistry can spread, etc. So the decision dangerous.
Yes, and I would not want to buy disposable stick for a lot of money. And how to check it?
The market is similar to a disposable stick.
To the question: "How can I test it ?"
I answered the producers: "Buy 5pcs. 3pcs start and You will see that the other 2 PCs work!"
Broken sector and multiple formatting
Many people know that the flash media (SSD drives, SD cards, usb flash) always has a backup memory for bad sectors. For example, a USB flash drive in 8 GB and the chip 12 GB. The remaining 4Gb are being used, when it begins to fail some sector. There just is information with suspicious sector to a normal, locked and away from sin.
It turns out that if you repeatedly format a flash drive or SSD drive, there will still be pieces of information because access to them is closed. But the same pc-3000flash it all is read on hurrah.
Autonomy
USB flash drive is a mobile device and the destruction should be too mobile. Decided to install a battery 12V.
Encryption
Well, if we all encrypt, then use it. We first remove the encryption keys, and then send commands to the flash drive on mashing sectors.
The encryption keys are in memory of the controller, and to get them impossible. You can only reset and generate a new one.
Here's an idea! The following articles will talk about the production design, manufacturing buildings and in General the practical side of the question.
Difficulties quite a lot on this I will write several articles.
Now we have manufactured a secure flash drive under the brand "Samurai" samurai24.ru located in techno-Park "Strogino".
PS: This is our first article if what not so write, we will try to improve the quality of articles.
Sources:
data Recovery from Flash drives
Pocket duplicator
Keyloger virtual keyboard
flash Drive password
Комментарии
Отправить комментарий