This paper demonstrates how to exploit the encrypted key import functions of a variety of different cryptographic devices to reveal the imported key. The attacks are padding oracle attacks, where error messages resulting from incorrectly padded plaintexts are used as a side channel. This is the paper that made headlines regarding RSA tokens being cracked in 13 minutes.
2f956e99861dabc4d9e263529db1992adcbe71b48930cc4158b998b604dc42b0Whitepaper called Attacking and fixing the Microsoft Windows Kerberos Login Service.
dca56f74aa6bce65400493957a77a259aea8e57979675bb75f2810e882eaa367
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed