M6 Posted November 14, 2023 at 11:06 AM Report Share #632112 Posted November 14, 2023 at 11:06 AM An error as small as a single flipped memory bit is all it takes to expose a private key. [Continua...] In Ars Technica, 13 de Novembro de 2023 10 REM Generation 48K! 20 INPUT "URL:", A$ 30 IF A$(1 TO 4) = "HTTP" THEN PRINT "400 Bad Request": GOTO 50 40 PRINT "404 Not Found" 50 PRINT "./M6 @ Portugal a Programar." Link to comment Share on other sites More sharing options...
Rui Carlos Posted November 14, 2023 at 10:58 PM Report Share #632117 Posted November 14, 2023 at 10:58 PM Acho que é desta que mudo para chaves ECDSA 😄 Algo que também me chamou a atenção: Citação The reason: By comparing the malformed signature with a valid signature, the adversary could perform a GCD—or greatest common denominator—mathematical operation that, in turn, derived one of the prime numbers underpinning the security of the key. This led to a series of attacks that relied on actively triggering glitches during session negotiation, capturing the resulting faulty signature and eventually compromising the key. Triggering the errors relied on techniques such as tampering with a computer’s power supply or shining a laser on a smart card. Parece que os smart cards não são tão seguros como eu pensava. Rui Carlos Gonçalves Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now