1. 15
    Lend Me Your Ear: Passive Remote Physical Side Channels on PCs cryptography security usenix.org
    crazyloglad avatar via crazyloglad 1 year ago |
    Archive.org Archive.today Ghostarchive
    | 5 comments
  1. 1
    Loup-Vaillant avatar Loup-Vaillant 1 year ago | link

    Crap.

    Crap crap.

    Crap crap crap crap crap.

    1. 2
      crazyloglad avatar crazyloglad 1 year ago | link

      game over man, game over.

    2. 1
      pja avatar pja 1 year ago | link

      Good grief. VOIP / video conferencing leaking your secret keys !

      1. 2
        TyberiusPrime avatar TyberiusPrime 1 year ago | link

        Provided you use them 91 times to sign the same message, if I am reading this correctly.

        1. 1
          pja avatar pja 1 year ago | link

          If I understand the paper correctly, they are suggesting that ECDSA is often implemented so that if you supply the same key, the code will calculate the same nonce & you can track that calculation to leak the nonce & therefore the secret key used by the other party. So simply connecting with the same ECDSA parameters is sufficient?

          Urgh.