Re:from an attacker with physical access (Score 1)

You mean if somebody has physical access to your hardware on day-to-day basis? We are not talking about that. As several posters mentioned before - stolen laptop is the main concern here. If the disk is encrypted with a good key, this cold-DRAM-reading is the only viable and relatively easy method of stealing sensitive data from it. The best solutions I've read so far today about: 1. Getting rid of the somehow marked sensitive information from memory, while switching to sleep mode or to locked mode. This method will need lots of code change and full cooperation of OS and application developers. 2. Using capacitor based backup power on motherboard to wipe memory clean at the moment of power loss. This method is easier to implement but less reliable, since you can pop RAM from the motherboard while it is still on, or just destroy that capacitor before power off.