[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Timing Cryptanalysis Attack

To: Matt Blaze <[email protected]>
Subject: Re: Timing Cryptanalysis Attack
From: "Perry E. Metzger" <[email protected]>
Date: Mon, 11 Dec 1995 14:44:14 -0500
Cc: [email protected]
In-Reply-To: Your message of "Mon, 11 Dec 1995 14:06:55 EST." <[email protected]>
Reply-To: [email protected]
Sender: [email protected]

Matt Blaze writes:
> >The trivial way to handle this is simply to check user time with the
> >right system calls and make sure it always comes out the same with an
> >apropriate number of sleeps.
> 
> Of course, this works against a remote adversary, but not against one
> on the same machine who can look at actual CPU consumption (which doesn't
> increase when the target is blocked).

True enough, but using busy loops could handle that. However, I must
admit to being far more interested in handling the remote case
efficiently, especially given concerns people have about using
Photuris like systems on heavily pounded servers.

Perry

References:
- Re: Timing Cryptanalysis Attack
  - From: Matt Blaze <[email protected]>

Prev by Date: Re: Pornographic stories
Next by Date: Re: [NOISE] anti-copy
Prev by thread: Re: Timing Cryptanalysis Attack
Next by thread: Re: Timing Cryptanalysis Attack
Index(es):
- Date
- Thread