The fastest crypto-cracking computer known can crack a DES key in 22 hours, 15 minutes. It was purpose-built to do just that and cost $250,000. If we could build a general-purpose machine that would crack a DES key in one second and that could crack AES just as efficiently, that machine still wouldn’t be able to crack AES-128 before the heat-death of the universe. It would take the majority of the estimated energy in the universe to power the machine, and you still wouldn’t get anywhere. AES as a whole is stupefyingly secure.

FileVault actually uses an AES-128 sparse volume to store your home directory. When you log in, the volume’s key is decrypted using your login password, and the volume is mounted. It operates in exactly the same way as a separately-created sparse disk image.

The problem with FileVault and with encrypted images on Macs in general is that modern Macs do something called SafeSleep. It’s a cross between suspend and what Windows calls Hibernation. Essentially, the contents of RAM are written to the disk and the system is put to sleep. If power is maintained, the system resumes from RAM. If it loses power at some point (like, say, you change the battery on a laptop), it resumes from the sleepimage on the disk.

Do you see the problem here?

If you use FileVault or an encrypted disk image, the encryption keys are stored in your RAM. If you put your computer to sleep, the keys in RAM are written to your disk in plaintext. Not only that, your login password is stored in RAM and it is also written to disk in plaintext.

Yes, encrypted images may be enough to prevent casual snooping, but you really need more to protect against someone who wants to get at the data. Plus, that’s a fantastic way to get on the no-fly lists.

Cheers, Jeff