TLUG Mailing List

Mailing List Archive

tlug.jp Mailing List tlug archive tlug Mailing List Archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] Your computer is speaking your private key out loud?!

Date: Fri, 20 Dec 2013 10:49:33 +0900

From: Edward Middleton <edward.middleton@example.com>

Subject: Re: [tlug] Your computer is speaking your private key out loud?!

References: <52B398DE.8070709@dcook.org>

User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.1.1
On 12/20/2013 10:09 AM, Darren Cook wrote:
It is not April 1st so I'm a bit stuck here:

http://arstechnica.com/security/2013/12/new-attack-steals-e-mail-decryption-keys-by-capturing-computer-sounds/

I fully understand how the sound of your CPU will change when under
load. I therefore understand how by listening to computer noise you
could tell when a user is decrypting an email.

Where I'm stuck is how that allows you to steal a 4096-bit private key.
It seems, at best, you could not get any more information than the CPU
line I see when running top?
CPU noises correspond to certain operations on the processor if you knowwhat code the processor is running you can match the noises back to thecode paths in the machine code for the program, and from that determinewhat was in the registers when the operation happened, which at somepoint will be the RSA key.
Edward
Follow-Ups:

Re: [tlug] Your computer is speaking your private key out loud?!
From: Darren Cook

References:

[tlug] Your computer is speaking your private key out loud?!
From: Darren Cook

Prev by Date: [tlug] Your computer is speaking your private key out loud?!

Next by Date: Re: [tlug] Your computer is speaking your private key out loud?!

Previous by thread: [tlug] Your computer is speaking your private key out loud?!

Next by thread: Re: [tlug] Your computer is speaking your private key out loud?!

Index(es):

Date

Thread

Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links