[linux-elitists] [paper] RSA Key Extraction via Low-Bandwidth Acoustic Cryptanalysis

Greg Folkert greg at gregfolkert.net
Fri Dec 20 15:19:40 PST 2013


On Fri, 2013-12-20 at 14:42 -0700, David L. Anselmi wrote:
> Timothy Tuck wrote:
> > On 19.12.2013 14:58, Bill Bogstad wrote:
> > --- snip ---
> >>> fantastic! :/
> >>>
> >>> So ya this basically just rendered all encryption virtually useless!
> >>
> >> Not even close. Even if one believes everything being said about the result, all it means is
> >> that one shouldn't let anyone be within acoustic range of their computer when it is decrypting
> >> the message. That isn't much harder to accomplish than not letting anyone read my email over my
> >> shoulder.
> >
> > Wow, is that some special kind of crack that your on?
> > Not much harder to accomplish than not letting anyone read over your shoulder eh?
> 
> Debian has a patch out.  So I guess we're back to not even close.

Would this patch be similar to the one they did to SSH a few years ago?

If so, then we should just give them the damned Signing Key.
-- 
greg at gregfolkert.net
PGP key 1024D/B524687C 2003-08-05
Fingerprint: E1D3 E3D7 5850 957E FED0 2B3A ED66 6971 B524 687C
"We are ne'er like angels till our passion dies."
    -- Thomas Dekker
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <http://zgp.org/pipermail/linux-elitists/attachments/20131220/55fc583f/attachment.sig>


More information about the linux-elitists mailing list