Slashdot Mirror


Researchers Find Way To Zap RSA Algorithm

alphadogg writes "Three University of Michigan computer scientists say they have found a way to exploit a weakness in RSA security technology used to protect everything from media players to smartphones and e-commerce servers. RSA authentication is susceptible, they say, to changes in the voltage supply to a private key holder. While guessing the 1,000-plus digits of binary code in a private key would take unfathomable hours, the researchers say that by varying electric current to a secured computer using an inexpensive purpose-built device they were able to stress out the computer and figure out the 1,024-bit private key in about 100 hours – all without leaving a trace. The researchers in their paper outline how they made the attack (PDF) on a SPARC system running Linux."

2 of 173 comments (clear)

  1. Like lead pipe cryptanalysis... by Anonymous Coward · · Score: 5, Funny

    ...whether interrogating a human or a computer, apparently it is a simple matter of voltage.

  2. Re:Could this be considered... by Bakkster · · Score: 5, Funny

    ...electronic torture?

    Wattage-boarding

    --
    Write your representatives! Repeal the 2nd Law of Thermodynamics!