Steve Shockley wrote: > Stefan Kanthak wrote: >> 2. The typical user authentication won't help, we're at hardware >> level here, and no OS needs to be involved. > > So, if I understand you correctly, if I boot my machine into DOS the > memory can be read over Firewire? If DMA is enabled on the firewire interface its possible! If the BIOS allows to boot from a firewire device then it will setup the hardware! > Or does the machine need a Firewire driver loaded to be vulnerable? If the BIOS does not setup the firewire interface the some driver has to do it. So: it depends. You can also read the memory if you shut down but dont power off your system. Typically drivers leave their devices in working condition. Stefan
