Linked by Thom Holwerda on Mon 8th Mar 2010 19:04 UTC, submitted by gogothebee
Privacy, Security, Encryption "Three University of Michigan computer scientists say they have found a way to exploit a weakness in RSA security technology used to protect everything from media players to smartphones and ecommerce servers.RSA authentication is susceptible, they say, to changes in the voltage supply to a private key holder. The researchers - Andrea Pellegrini, Valeria Bertacco and Todd Austin - outline their findings in a paper titled "Fault-based attack of RSA authentication", to be presented 10 March at the Design, Automation and Test in Europe conference."
Thread beginning with comment 412723
To read all comments associated with this story, please click here.
Somewhat misleading
by JoeBuck on Mon 8th Mar 2010 19:20 UTC
JoeBuck
Member since:
2006-01-11

This kind of attack doesn't break the algorithm, it exploits features of a physical implementation, meaning you need access the the hardware that implements the algorithm.

So these kinds of attacks mainly are a way to break DRM, they don't affect e-commerce security.

Reply Score: 7

RE: Somewhat misleading
by panzi on Mon 8th Mar 2010 20:27 in reply to "Somewhat misleading"
panzi Member since:
2006-01-22

If an attacker has physical access to the hardware that implements the security, hasn't your security failed already?

Reply Parent Score: 3