BitLocker and DMA and Memory Resilience attacks?

  1.    #1

    BitLocker and DMA and Memory Resilience attacks?


    I an running BitLocker with fully encrypted OS drive with TPM only authentication.

    I have Sleep mode disabled with a setting: Never

    When not using my laptop, I power OFF my system completely.

    My question is, am I still vulnerable to DMA attacks if I shutdown my laptop completely when I am finished using my laptop?

    I read that DMA attacks only occur when the systems are not fully powered down , meaning there are just only Locked with the Windows Logon screen, Sleep mode, or just reboot.
      My ComputerSystem Spec

  2.    #2

    When you fully shut down your system then your memory controller and DIMMs are powered off. So, by definition, a DMA attack won't be possible since there's no memory to access and no path for devices to access memory.
      My ComputerSystem Spec

  3.    #3

    As long as my laptop is fully turned off I should be safe from DMA attacks?

    I never leave my laptop powered ON and Sleep mode is disabled.
      My ComputerSystem Spec

  4.    #4

    Yes, that's what I said.
      My ComputerSystem Spec

  5.    #5

    Thank you!

    Is that's the case, then I should be fine using TPM only protection WITHOUT setting the below Group Policies?


    Can I just only Enable the GPO setting (Disable new DMA devices when this computer is locked) or do I need to also set the other GPO settings as well as shown below?

    Computer Configuration > System > Device Installation > Device Installation Restrictions
    Prevent installation of devices that match any of these Device IDs > Prevent installation of devices that match any of these Device IDs: PCI\CC_0C0A


    Computer Configuration > System > Device Installation > Device Installation Restrictions
    Prevent installation of devices that match any of these Device IDs > Prevent installation of devices that match any of these Device IDs: {d48179be-ec20-11d1-b6b8-00c04fa372a7}
    Last edited by win10freak; 28 Jul 2018 at 13:05.
      My ComputerSystem Spec


 

Related Threads
Source: Announcing: new British Standard for cyber risk and resilience Microsoft Secure
Source: The cloud powers greater cyber resilience - Microsoft on the Issues
Read more: Microsoft perspective on cyber resilience | Microsoft Secure Blog
Protect PC from High-End Attacks? in AntiVirus, Firewalls and System Security
Hello! I was wondering if anyone could give me better tips to protect my PC from things like botnets. In the case I am particularly looking to expand my security horizon not on accidentally visiting websites that would give me a botnet, but...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 17:45.
Find Us