fyi: Adi Shamir's microprocessor bug attack
James Muir
jamuir at cs.smu.ca
Mon Nov 19 15:27:29 EST 2007
' =JeffH ' wrote:
> From: John Young <cryptome at earthlink.net>
> Subject: Adi Shamir's microprocessor bug attack
> To: ukcrypto at chiark.greenend.org.uk
> Date: Sat, 17 Nov 2007 09:50:31 -0500 (GMT-05:00)
>
>
> Adi Shamir's note on a microprocessor bug attack on public key cryptography
> featured in the NY Times today:
>
> http://cryptome.org/bug-attack.htm
>
> The NYT report:
>
> http://www.nytimes.com/2007/11/17/technology/17code.html
>
Can anyone think of a deployed implementation of RSA signatures that
would be vulnerable to the attack Shamir mentions? Hashing and message
blinding would seem to thwart it.
Incidentally, in the 2001 Boneh-DeMillo-Lipton paper they do mention the
Intel floating point division bug.
-James
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list