side-channelTag
ActivePublic

Members

  • This project does not have any members.

Watchers

  • This project does not have any watchers.

Details

Description

Related to possible side channel attacks.

Recent Activity

Sun, Jun 23

slandden added a comment to T4541: C implementation of AES is vulnerable to side-channel attacks.

Werner, I interpreted jwilik's patch as admission of a problem from upstream, and reported it as such to CVE. I felt that since this does not effect the main platforms (ARM and x86_64) it would not be a big deal. If I interpreted wrong, I am sorry.

Sun, Jun 23, 7:52 PM · side-channel, libgcrypt, Bug Report
slandden added a comment to T4541: C implementation of AES is vulnerable to side-channel attacks.

I assigned the CVE, but yes it needs more facts.

Sun, Jun 23, 5:48 PM · side-channel, libgcrypt, Bug Report
werner added a comment to T4541: C implementation of AES is vulnerable to side-channel attacks.

Andreas, I wonder on which grounds you assigned a CVE for this claimed side-channel attack. The mentioned paper is about an old RSA side-channel and not on AES. I would like to see more facts than the reference to a guy who knows PPC pretty well.

Sun, Jun 23, 5:45 PM · side-channel, libgcrypt, Bug Report

Sat, Jun 22

ametzler1 added a comment to T4541: C implementation of AES is vulnerable to side-channel attacks.

This bug has been assigned CVE-2019-12904. http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12904

Sat, Jun 22, 6:36 AM · side-channel, libgcrypt, Bug Report

Thu, Jun 6

slandden updated the task description for T4541: C implementation of AES is vulnerable to side-channel attacks.
Thu, Jun 6, 6:40 PM · side-channel, libgcrypt, Bug Report
jukivili added a commit to T4541: C implementation of AES is vulnerable to side-channel attacks: rCa4c561aab101: GCM: move look-up table to .data section and unshare between processes.
Thu, Jun 6, 6:28 PM · side-channel, libgcrypt, Bug Report
jukivili added a commit to T4541: C implementation of AES is vulnerable to side-channel attacks: rCdaedbbb5541c: AES: move look-up tables to .data section and unshare between processes.
Thu, Jun 6, 6:28 PM · side-channel, libgcrypt, Bug Report

Thu, May 30

slandden updated the task description for T4541: C implementation of AES is vulnerable to side-channel attacks.
Thu, May 30, 3:46 PM · side-channel, libgcrypt, Bug Report

Wed, May 29

werner added a project to T4541: C implementation of AES is vulnerable to side-channel attacks: side-channel.
Wed, May 29, 8:29 AM · side-channel, libgcrypt, Bug Report
werner set the color for side-channel to Grey.
Wed, May 29, 8:29 AM