ianG wrote:
[...], I'm expecting
there to be no special hardware access via Android/Java.
[...] normally the developer has no control over which phone the
product will be used on. There isn't a lot of point in developing for
some special hardware features.
Yet there is one such point: side-channel attack countermeasures.
Has anyone done any side channel analysis on phones?
Aren't side channel attacks hardware-specific, almost by definition?
If so, this original post postulates an impossible problem statement:
hardware abstraction can not assist countermeasures for
hardware-specific threats.
[...] how to limit the
possibilities of attacking the keys from another app.
OK, now you insert O/S abstraction and O/S-specific threats.
Regards,
--
- Thierry Moreau
CONNOTECH Experts-conseils inc.
9130 Place de Montgolfier
Montreal, QC, Canada H2M 2A1
Tel. +1-514-385-5691
_______________________________________________
cryptography mailing list
[email protected]
http://lists.randombit.net/mailman/listinfo/cryptography
