[cryptography] side channel analysis on phones

Jeffrey Walton noloader at gmail.com
Fri Mar 8 10:50:35 EST 2013


On Fri, Mar 8, 2013 at 2:57 AM, ianG <iang at iang.org> wrote:
> Has anyone done any side channel analysis on phones?
>
> I'm working on an android crypto app at the moment, and an unanswered
> question from the threat model is how to limit the possibilities of
> attacking the keys from another app.  I can see obvious techniques of adding
> additional camouflage crunching and delays, but as there might be smart apps
> sitting right there in another sandbox, it seems intuitively that just
> adding noise isn't going to cut it.
Somewhat related: a company called Riscure was doing it remotely. They
did a BlackHat in 2008. I believe they now have a commercial product.

http://www.google.com/#q=riscure+side+channel+analysis+filetype:pdf

Jeff



More information about the cryptography mailing list