[guardian-dev] Smartphones: Acoustic Key Breakers
Lee Azzarello
lee at guardianproject.info
Fri Dec 20 13:26:27 EST 2013
I'd like to focus on the "acoustic emanations" part. What's up with that?
Remember Van Eck phreaking? Theoretically possible but only good for
fiction writing in reality.
-lee
On Wednesday, December 18, 2013, Nathan of Guardian wrote:
>
> >From GnuPG:
> http://lists.gnupg.org/pipermail/gnupg-devel/2013-December/028102.html
>
> "The second attack is more serious. It is an adaptive chosen ciphertext
> attack to reveal the private key. A possible scenario is that the
> attacker places a sensor (for example a standard smartphone) in the
> vicinity of the targeted machine. That machine is assumed to do
> unattended RSA decryption of received mails, for example by using a mail
> client which speeds up browsing by opportunistically decrypting mails
> expected to be read soon. While listening to the acoustic emanations of
> the targeted machine, the smartphone will send new encrypted messages to
> that machine and re-construct the private key bit by bit. A 4096 bit
> RSA key used on a laptop can be revealed within an hour."
> _______________________________________________
> Guardian-dev mailing list
>
> Post: Guardian-dev at lists.mayfirst.org <javascript:;>
> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>
> To Unsubscribe
> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org<javascript:;>
> Or visit:
> https://lists.mayfirst.org/mailman/options/guardian-dev/lee%40guardianproject.info
>
> You are subscribed as: lee at guardianproject.info <javascript:;>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20131220/308dd666/attachment.html>
More information about the Guardian-dev
mailing list