Bitcoin Forum
August 26, 2024, 06:16:47 AM *
News: All versions of Windows are affected by a critical security bug; make sure you update.
 
   Home   Help Search Login Register More  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > Mental note: ensure EC crypto is not susceptible to side channel attacks
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: Mental note: ensure EC crypto is not susceptible to side channel attacks  (Read 1265 times)
Mike Hearn (OP)
Legendary
*
expert
Offline Offline

Activity: 1526
Merit: 1129


View Profile
February 25, 2011, 10:18:36 AM
 #1
For people working on mobile clients:

   http://threatpost.com/en_us/blogs/attack-can-extract-crypto-keys-mobile-device-signals-021611

OpenSSL has apparently been balanced to try and avoid this type of attack. I don't know about crypto++ or Bouncy Castle.
0x6763
Guest
February 25, 2011, 02:49:24 PM
 #2
I suspect Bouncy Castle doesn't, or at least I didn't see any comments about it in the Bouncy Castle source code yet.  I've mostly only looked at the EC code, though.  What does OpenSSL do to try to avoid this type of attack?
Mike Hearn (OP)
Legendary
*
expert
Offline Offline

Activity: 1526
Merit: 1129


View Profile
February 25, 2011, 03:38:15 PM
 #3
All operations are constant time. I don't know if you have to do more than that to be safe from power/rf analysis too.
Pages: [1]
  Print  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > Mental note: ensure EC crypto is not susceptible to side channel attacks
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!