Skip to Content

Behind the scenes with FileVault

by Scott McNulty Dec 29th 2006 at 7:00PM

FileVault is the Home directory encryption feature of OS X (introduced in Pather) which Apple bills as offering, 'Eternal Protection.' Apple hasn't produced much documentation on FileVault, I suppose in hopes that no one would find an easy way to hack it. A presentation at the 23rd Chaos Computing Congress focused on FileVault, how it works, and possible vulnerabilities.

Luckily for us, the general conclusion is that FileVault is a good way to secure your drive, if used correctly. FileVault does not encrypt the contents of system memory by default in Tiger (It doesn't do it at all in Panther) and it does not, by design, encrypt anything outside of a user's home directory.

There are a few possible attack vectors, but the easiest seems to be a good old brute force Dictionary attack on the 'Master Password' that you must set when enabling FileVault. Remember, if your password is weak all the encryption in the world won't help you.

[via MacSlash]

View Tags

Related Stories

Categories

OS Software Other Events Apple

FileVault is the Home directory encryption feature of OS X (introduced in Pather) which Apple bills as offering, 'Eternal Protection.'...
 

Add a Comment

Sign in »
*0 / 3000 Character Maximum

9 Comments

Filter by:
keihan

I've also experienced slow performance with FV enabled. Turning it off on my MBP made me like my laptop again. If it had been fast it would've been a great feature.

December 30 2006 at 8:35 AM Report abuse rate up rate down Reply
Chris

IF YOU WISH TO ENCRYPT FILES ON YOUR MAC TRY USING DISC UTILITY TO CREATE A PASSWORD PROTECTED DISC IMAGE. YOU CAN CHOOSE THE SIZE AND PLACE IT ANYWAY YOU WISH.

December 30 2006 at 7:49 AM Report abuse rate up rate down Reply
john

Older Word using documents migrated from a PC will have problems if they are stored on (in?) filevault.

December 30 2006 at 1:28 AM Report abuse rate up rate down Reply
Lon Seidman

WARNING: If you use filevault be very careful.. I turned it on to encrypt files on my powerbook only to find the filevault volume corrupted only a few days later. Since it encrypts EVERYTHING in your user directory into a single enormous file, I lost everything when the thing crashed. Photos, music, etc. I wish TrueCrypt would get ported over to the Mac soon, it's a great solution for encrypting data and much easier to manage.

December 30 2006 at 12:38 AM Report abuse rate up rate down Reply
European Vacation

I just turned it of with no problem.

December 29 2006 at 11:39 PM Report abuse rate up rate down Reply
Mike Bezner

One thing they don't tell you-

Once you turn on FileVault, it is difficult to turn it off should you choose to do so. You need the same amount of empty hard drive space available as the size of your FileVault or it won't work.

December 29 2006 at 11:34 PM Report abuse rate up rate down Reply
Steven Fisher

jason: Speed is the trade off. Decide if you want security or speed. Personally, I wanted security. However, turning on FileVault introduces a lot of bugs in, for example, AppleScript.

December 29 2006 at 9:08 PM Report abuse rate up rate down Reply
jason

I ahvent used it on my new Macbook Pro, but I remember Filevault slowed my iBook down tremendously.

is it any faster on the new C2D macs?

December 29 2006 at 8:39 PM Report abuse rate up rate down Reply
Chris

Dooes anyone using Leopard have any info on changes/improvements with FileVault?

December 29 2006 at 7:50 PM Report abuse rate up rate down Reply
Buy an ad here

Hot Apps on TUAW

Tweets

© 2012 AOL Inc. All Rights Reserved.