On Wed, Nov 24, 2010 at 3:20 PM, coderman <[email protected]> wrote:
> On Wed, Nov 24, 2010 at 8:26 AM, Jack Lloyd <[email protected]> wrote:
>>
>> An interesting new eprint on attacking AES using cache timings....
>> "Cache Games - Bringing Access Based Cache Attacks on AES to Practice"
>> Endre Bangerter and David Gullasch and Stephan Krenn
>> http://eprint.iacr.org/2010/594
>>
>> What are people's thoughts on these kinds of local cache attacks, in
>> terms of actual systems security?
>
> good reasons to use a hardware AES implementation like AES-NI or XCRYPT.
>
Or OpenSSL 1.0 which is immune (the paper references 0.9.8n and says
1.0 is immune).
----
-Michael Heyman
_______________________________________________
cryptography mailing list
[email protected]
http://lists.randombit.net/mailman/listinfo/cryptography
