Attacking OpenSSL using Side-channel Attacks (SHA2017)
The RSA case study
Chaos Computer Club - SHA2017: Still Hacking Anyway (mp3) · Praveen Vadnala, Lukasz Chmielewski
August 3, 201749m 20s
Audio is streamed directly from the publisher (cdn.media.ccc.de) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Side channel attacks (SCA) gained attention in the past years. New low cost tools like Chip-Whisperer proved that these attacks are not any more a theoretical, academic risk but a real threat to the security of the embedded systems. Many cryptographic products are now being developed having this attacks in mind and countermeasures are being implemented. This is the case of the omnipresent OpenSSL, which implement protections against side channel attacks to prevent the extraction of the secret key.
In our presentation, we will briefly introduce SCA to the audience and discuss later the countermeasures implemented in the OpenSSL RSA and our attack that allows us to bypass them.
#NetworkSecurity
about this event: https://c3voc.de
Topics
SHA2017169