Related to possible side channel attacks.
Details
Details
Description
Sun, Jun 23
Sun, Jun 23
slandden added a comment to T4541: C implementation of AES is vulnerable to side-channel attacks.
Werner, I interpreted jwilik's patch as admission of a problem from upstream, and reported it as such to CVE. I felt that since this does not effect the main platforms (ARM and x86_64) it would not be a big deal. If I interpreted wrong, I am sorry.
slandden added a comment to T4541: C implementation of AES is vulnerable to side-channel attacks.
I assigned the CVE, but yes it needs more facts.
werner added a comment to T4541: C implementation of AES is vulnerable to side-channel attacks.
Andreas, I wonder on which grounds you assigned a CVE for this claimed side-channel attack. The mentioned paper is about an old RSA side-channel and not on AES. I would like to see more facts than the reference to a guy who knows PPC pretty well.
Sat, Jun 22
Sat, Jun 22
ametzler1 added a comment to T4541: C implementation of AES is vulnerable to side-channel attacks.
This bug has been assigned CVE-2019-12904. http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12904
Thu, Jun 6
Thu, Jun 6
slandden updated the task description for T4541: C implementation of AES is vulnerable to side-channel attacks.
Thu, May 30
Thu, May 30
slandden updated the task description for T4541: C implementation of AES is vulnerable to side-channel attacks.
Wed, May 29
Wed, May 29
werner added a project to T4541: C implementation of AES is vulnerable to side-channel attacks: side-channel.