[Cryptography] Compiler optimization side channel
John Levine
johnl at iecc.com
Sun Aug 25 14:05:38 EDT 2024
It appears that Peter Gutmann <pgut001 at cs.auckland.ac.nz> said:
>John Levine <johnl at iecc.com> writes:
>
>>I'm not aware of anyone working on this. Is anyone else? I suppose I should
>>ask comp.compilers too.
>
>It'd been suggested to the gcc folks a while back. To borrow a term from a
>previous message, they were stupendously uninterested.
In comp.compilers we found that there is some work on clearing
temporaries, such as GCC's -fhardened and memset_explicit() to be
added to C23.. Nobody seems to be thinking about constant time.
Start here:
https://compilers.iecc.com/comparch/article/24-08-003
R's,
John
More information about the cryptography
mailing list