[guardian-dev] Smartphones: Acoustic Key Breakers
Natanael
natanael.l at gmail.com
Fri Dec 20 14:21:16 EST 2013
The voltage regulator vibrates slightly and this emits sounds when it tries
to keep the voltage stable as the CPU switches between computations that
require different amounts of power.
They found that they could use the timing info that they could extract from
the sound to see for how long the CPU was performing certain parts of the
RSA computations, and combined with the ability to perform a chosen
plaintext attack (telling the computer what to encrypt) they could figure
out the private key after half an hour of encryption of various data.
- Sent from my phone
Den 20 dec 2013 19:26 skrev "Lee Azzarello" <lee at guardianproject.info>:
> I'd like to focus on the "acoustic emanations" part. What's up with that?
> Remember Van Eck phreaking? Theoretically possible but only good for
> fiction writing in reality.
>
> -lee
>
> On Wednesday, December 18, 2013, Nathan of Guardian wrote:
>
>>
>> >From GnuPG:
>> http://lists.gnupg.org/pipermail/gnupg-devel/2013-December/028102.html
>>
>> "The second attack is more serious. It is an adaptive chosen ciphertext
>> attack to reveal the private key. A possible scenario is that the
>> attacker places a sensor (for example a standard smartphone) in the
>> vicinity of the targeted machine. That machine is assumed to do
>> unattended RSA decryption of received mails, for example by using a mail
>> client which speeds up browsing by opportunistically decrypting mails
>> expected to be read soon. While listening to the acoustic emanations of
>> the targeted machine, the smartphone will send new encrypted messages to
>> that machine and re-construct the private key bit by bit. A 4096 bit
>> RSA key used on a laptop can be revealed within an hour."
>> _______________________________________________
>> Guardian-dev mailing list
>>
>> Post: Guardian-dev at lists.mayfirst.org
>> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>>
>> To Unsubscribe
>> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org
>> Or visit:
>> https://lists.mayfirst.org/mailman/options/guardian-dev/lee%40guardianproject.info
>>
>> You are subscribed as: lee at guardianproject.info
>>
>
> _______________________________________________
> Guardian-dev mailing list
>
> Post: Guardian-dev at lists.mayfirst.org
> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>
> To Unsubscribe
> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org
> Or visit:
> https://lists.mayfirst.org/mailman/options/guardian-dev/natanael.l%40gmail.com
>
> You are subscribed as: natanael.l at gmail.com
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20131220/3f30ba5b/attachment.html>
More information about the Guardian-dev
mailing list