[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Attacking Clipper with timing info?

To: [email protected]
Subject: Re: Attacking Clipper with timing info?
From: Matt Blaze <[email protected]>
Date: Thu, 14 Dec 1995 00:31:00 -0500
Cc: [email protected], [email protected]
In-Reply-To: Your message of "Wed, 13 Dec 1995 20:21:00 CST." <[email protected]>
Sender: [email protected]

> 
> That was indeed what I was wondering.  I expect we wont have to wait too  
> long before we hear whether Clipper chips require the same or a different  
> amount of time to encrypt/decrypt.  Should be interesting.
>
Clipper chips require fixed time to do a codebook cipher operation (exactly
64 clock ticks).  It's in the chip spec.

Capstone chips, on the other hand (as embodied in Tessera/Fortezza) have
public-key operations (DSA and a classified key exchange algorithm called
KEA that appears based on its interface to be El Gamal-like).  The cards
aren't supposed to reveal the secrets stored on them, ever.  There does
appear to be some variability in those functions, however.  I've not yet
reached any firm conclusions, however.

-matt

References:
- Re: Attacking Clipper with timing info?
  - From: [email protected] (Jim Miller)

Prev by Date: Re: Attacking Clipper with timing info?
Next by Date: Re: e-Cash: CAFE vs. Mondex
Prev by thread: Re: Attacking Clipper with timing info?
Next by thread: Re: Attacking Clipper with timing info?
Index(es):
- Date
- Thread