[Cryptech Tech] goals / use cases
Joachim Strömbergson
joachim at secworks.se
Wed Jan 28 16:13:43 UTC 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Aloha!
Randy Bush wrote:
> Peter Gutmann wrote:
>> I know that's the theoretical answer, but how would you
>> side-channel AES or SHA-1? For DSA and ECDSA, which are a whole
>> smorgasbord of side-channel opportunities, I can see this would be
>> an issue (thus the comment about leaving that for an FPGA), but any
>> side-channel on AES is going to be something like leaking the key
>> via EMI, in which case an FPGA can do exactly the same thing.
>
> that is our code in the fpga, and not our code in the arm.
And that is exactly the difference. Since it is our code we can try
different methods at protecting against side channel leakage.
There are many ways to try (as the number of papers with side channel
protection mechanisms presented at CHES shows.) We might not succeed,
and somebody will probably find ways to defeat what we do (as the number
of papers on better side channel attacks presented at CHES shows.)
The important thing is that we have that ability, and can even change
protection mechanisms as time goes by. With a hard core in the CPU there
is no ability to do that.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
Joachim Strömbergson Secworks AB joachim at secworks.se
========================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/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=1vch
-----END PGP SIGNATURE-----
More information about the Tech
mailing list