HDD GURU FORUMS

I have recently started to look more into NAND Recovery since the demand is getting bigger and I receive more requests. Do any of the Commercial Flash Readers have the ability to decode the data that have been encrypted by some of the controllers. Specifically I am interested in SanDisk. Does PC3K Flash and or Salvation's Tool have the ability to deal with 20-99-00128-3 for example?

Thanks!

nope

Out of curiosity Doomer do you guys have any way of dealing with this short of having a big stock of working controllers to match?

From my understanding SanDisk for example uses the AES Algorithm and the key is unique per each controller. Would it be possible to read the encryption key directly from the controller chip? I have not looked into this, but if the encoding of the controller is understood then finding and reading out the key should be a theoretical option.

Has anyone tried this?

Yesterday i talked to someone from sandisk, and he says they recover themselves defective flash cards with encryption. They send it to ireland where they replace the controller. Would the key be not so unique after all ?
Or is he just talking BS ?

Dobre

I'm pretty sure I have seen other folks looking for specific controllers to recover with

....Interesting

I had not heard of sandisk performing recovery though, I assume this is a paid service?

Looking at their website it looks like they just recommend sending it to these guys:

http://lc-tech.com/services/recoveryservices.html

It can't be too hard as the only charge $75-$125... either that or they have a very low success rate

I think you'll find these guys only do logical recoveries for that price.

That guy from Sandisk talked as if it was Sandisk themselves doing the recovery, although i find it strange also. And yes, it was a paid service.

Dobre

Any updates on this thread. Is anyone successfully performing recoveries on crypted controllers?

quasimodo wrote:Any updates on this thread. Is anyone successfully performing recoveries on crypted controllers?

According to SD, their SD-Falsh handles controller encrypted data too.
However, I tried MSI controller encrypted 2GB chip and SD failed to find any valid data node on it.
I am not sure about PC-3K flash.

i am waiting for the new version of pc3kflash.

Lets see what ACE lab will make it for us.

pninja wrote:According to SD, their SD-Falsh handles controller encrypted data too.

I'm sure it has no problem removing the mix and producing a still-encrypted image of the drive

drccsc wrote:

pninja wrote:According to SD, their SD-Falsh handles controller encrypted data too.

I'm sure it has no problem removing the mix and producing a still-encrypted image of the drive

Yes it can. Problem is how to handle the encrypted image.

pninja wrote:Problem is how to handle the encrypted image.

Right, and if they say their tool can do that then I say BS.

pninja wrote:

quasimodo wrote:Any updates on this thread. Is anyone successfully performing recoveries on crypted controllers?

According to SD, their SD-Falsh handles controller encrypted data too.
However, I tried MSI controller encrypted 2GB chip and SD failed to find any valid data node on it.
I am not sure about PC-3K flash.

Yes, I too find it hard to believe that SD can recover from encryption, specially since their more experienced competitors can not.

I think they are referring to the "xor" encryption which is not really an encryption and quite easy to find.
If they can break the AES-128 encryption i think they will have a customer at the CIA

Dobre

I am sure CIA has the power over AES. Otherwise we weren't allowed to use it...