http://eprint.iacr.org/2013/448.pdf L3 Side Channel Attack on GPG, cross-VM, single execution. Is flushing a cache line a commonly used ASM instruction?
-
-
Replying to @TomRittervg
@TomRittervg I think the interns are going to need to work on this attack this week.3 replies 0 retweets 0 likes -
Replying to @tqbf
@tqbf@TomRittervg Similar techniques 2 extract OpenSSL keys? More interesting/useful for cloud (AWS) attacks. Extra credit opp 4 interns :p1 reply 0 retweets 0 likes -
Replying to @inthecloud247
@inthecloud247@TomRittervg Assumption would be that GPG codebase particularly naive w/r/t cache timing.1 reply 0 retweets 0 likes
Replying to @tqbf
@tqbf @TomRittervg isn't OpenSSL more 'hardened' / complex codebase? lotsa prior side-channel attacks already patched. Gpg is easier target.
11:03 PM - 8 Sep 2013
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.