[cryptography] side channel analysis on phones
noloader at gmail.com
Fri Mar 8 10:50:35 EST 2013
On Fri, Mar 8, 2013 at 2:57 AM, ianG <iang at iang.org> wrote:
> Has anyone done any side channel analysis on phones?
> I'm working on an android crypto app at the moment, and an unanswered
> question from the threat model is how to limit the possibilities of
> attacking the keys from another app. I can see obvious techniques of adding
> additional camouflage crunching and delays, but as there might be smart apps
> sitting right there in another sandbox, it seems intuitively that just
> adding noise isn't going to cut it.
Somewhat related: a company called Riscure was doing it remotely. They
did a BlackHat in 2008. I believe they now have a commercial product.
More information about the cryptography