you might heard of Cold boot attack https://en.wikipedia.org/wiki/Cold_boot_attack
In short: You reset PC and immediately after you boot and image of your own and read out RAM.
With raspberry PI you would pull out SD-Card, insert yours with dumping RAM content to SD, then shortly cut power and reboot. Data from RAM is now on your SD.
However if Raspberry PI would zero out RAM content (overwrite with 0) after power up, Cold boot attack would be efficently prevented. Of course there must be ensured if attacker tries to flash bootcode RAM is zeroed out as well before.
Performance loss is not noticeable only about 0,5 seconds on a Rasperry PI 3
Code: Select all
sysbench --test=memory run --memory-total-size=1G --num-threads=4 --memory-oper=write sysbench 0.4.12: multi-threaded system evaluation benchmark Running the test with following options: Number of threads: 4 Doing memory operations speed test Memory block size: 1K Memory transfer size: 1024M Memory operations type: write Memory scope type: global Threads started! Done. Operations performed: 1048576 (1898682.50 ops/sec) 1024.00 MB transferred (1854.18 MB/sec) Test execution summary: total time: 0.5523s total number of events: 1048576 total time taken by event execution: 1.7221 per-request statistics: min: 0.00ms avg: 0.00ms max: 1.22ms approx. 95 percentile: 0.00ms Threads fairness: events (avg/stddev): 262144.0000/863.52 execution time (avg/stddev): 0.4305/0.00
Is this zeroing out of RAM content already implemented? If not can you make it available?
Thanks for help.