http://eprint.iacr.org/2013/448.pdf L3 Side Channel Attack on GPG, cross-VM, single execution. Is flushing a cache line a commonly used ASM instruction?
@tqbf @TomRittervg Similar techniques 2 extract OpenSSL keys? More interesting/useful for cloud (AWS) attacks. Extra credit opp 4 interns :p
-
-
@inthecloud247@TomRittervg Assumption would be that GPG codebase particularly naive w/r/t cache timing. -
@tqbf@TomRittervg isn't OpenSSL more 'hardened' / complex codebase? lotsa prior side-channel attacks already patched. Gpg is easier target.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.