[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: New Bihman-Shamir Fault Analysis Paper

To: Martin Minow <[email protected]>
Subject: Re: New Bihman-Shamir Fault Analysis Paper
From: Dale Thorn <[email protected]>
Date: Sat, 02 Nov 1996 22:52:04 -0800
CC: [email protected]
References: <v03007800aea040ab78e7@[17.202.40.158]>
Sender: [email protected]

Martin Minow wrote:
> There is an inherent conflict between two claims that are
> central to the fault-analysis paper(s):
> "the secret key [is] stored in a tamperproof cryptographic device" and
>    "the cryptographic key is stored in an asymmetric type of
>     memory, in which induced faults ..."

> If the device is truly tamperproof, the attacker should not
> be able to induce faults.  Even given susceptable "consumer-
> quality" devices, it would be trivial to store the cryptographic keys
> in a redundant memory configuration, such as ECC "error-correcting
> code" memory that can self-correct a range of failures and detect
> a much wider range. It would also seem reasonable to protect the
> cryptographic core (algorithms and data) with a digital signature
> that would "crash" the device, rather than proceed with incorrect key information.

[snip]

My comment is about the last item here.  Doesn't "crash" assume normal use, and/or
that the device would have to be processed in an expected sort-of thread so that it
would be able to initiate the crash response?

References:
- Re: New Bihman-Shamir Fault Analysis Paper
  - From: Martin Minow <[email protected]>

Prev by Date: Re: 'what cypherpunks is about' [RANT]
Next by Date: Re: Thank you, John Gilmore, for protecting freedom of speech against Dr. Dmitri Vulius [RANT]
Prev by thread: Re: New Bihman-Shamir Fault Analysis Paper
Next by thread: Re: White House crypto proposal -- too little, too late
Index(es):
- Date
- Thread