Method for critical data theft discovered

A group led by a Princeton University computer security researcher has developed a simple method to steal encrypted information stored on computer hard disks, says New York Times.

The technique, which could undermine security software protecting critical data on computers, is as easy as chilling a computer memory chip with a blast of frigid air from a can of dust remover. Encryption software is widely used by companies and government agencies, notably in portable computers that are especially susceptible to theft.

The development, which was described on the group's Web site yesterday, could also have implications for the protection of encrypted personal data from prosecutors.

The European Commission has sketched out guidelines designed to help get radio frequency identification (RFID) technologies up and running in the European Union, but stopped short of proposing formal legislation in the area, reports IT World.

The commission said yesterday that it has drawn up a draft text that aims to help the makers of RFID technology, as well as potential users, introduce the technology without harming privacy rights.

The commission recommends that producers of RFID chips conduct a privacy assessment before marketing their wares, while industries that plan to use the chips should sign up to a code of conduct outlining how the chips should be used.

China Mobile is the latest of the region's telecoms operators to headquarter its Europe and Africa business in London, says Computing.co.uk.

With 369 million subscribers at the end of last year, the firm is the world's largest by customer base. But it is not the first to use the UK capital as a base for regional operations. China Netcom, the region's second-largest telecoms company, made a similar move in November. China Telecom started the trend in 2004.

China Mobile chief representative Henry Ge said: "London is the best place for us to be as it is at the heart of technology convergence in Europe, and offers us access to the technical capability and expert talent we need in order to grow our business."

Four of the most widely used disk encryption technologies, Windows Vista's BitLocker, Apple's FileVault, TrueCrypt and dm-crypt, have been rendered useless by a new attack class, according to a research paper released on 21 February, reports eWeek.

The issue is described as a design limitation that could allow practical attacks against laptops in "sleep" or "hibernation" mode.

Although a successful attack requires physical access to the machine, the research finding is significant because it means that sensitive, and encrypted, data stored on laptops can still be hijacked by skilled attackers.