[45177] in Cypherpunks


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Timing Cryptanalysis Attack

daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Mon Dec 11 13:46:02 1995

To: cypherpunks@toad.com
In-Reply-To: Your message of "Mon, 11 Dec 1995 09:45:07 +0100."
             <199512110845.JAA25564@utopia.hacktic.nl> 
Reply-To: perry@piermont.com
Date: Mon, 11 Dec 1995 13:10:42 -0500
From: "Perry E. Metzger" <perry@piermont.com>


Anonymous writes:
> I just read this paper, and while it is somewhat interesting, I
> don't think the walls of cryptography are in any danger of
> crumbling.
> 
> People employing systems like PGP are already advised to use them
> on private machines, with only one user, and untampered-with
> binaries.

Timings like the ones listed are trivial to take in establishing
things like SSL sessions, or Photuris sessions. The danger is to
online protocols, not to PGP.

Any reason you felt you had to say this anonymously?

Perry


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[45177] in Cypherpunks

Re: Timing Cryptanalysis Attack

daemon@ATHENA.MIT.EDU (Perry E. Metzger)Mon Dec 11 13:46:02 1995

daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Mon Dec 11 13:46:02 1995