Power LED Side-Channel Attack – Schneier on Security

11 months ago AndyC

Power LED Side-Channel Attack
This is a clever new side-channel attack:

The first attack uses an Internet-connected surveillance camera to take a high-speed video of the power LED on a smart card reader­or of an attached peripheral device­during crypto

Power LED Side-Channel Attack

This is a clever new side-channel attack:

The first attack uses an Internet-connected surveillance camera to take a high-speed video of the power LED on a smart card reader­or of an attached peripheral device­during cryptographic operations. This technique allowed the researchers to pull a 256-bit ECDSA key off the same government-approved smart card used in Minerva. The other allowed the researchers to recover the private SIKE key of a Samsung Galaxy S8 phone by training the camera of an iPhone 13 on the power LED of a USB speaker connected to the handset, in a similar way to how Hertzbleed pulled SIKE keys off Intel and AMD CPUs.

There are lots of limitations:

When the camera is 60 feet away, the room lights must be turned off, but they can be turned on if the surveillance camera is at a distance of about 6 feet. (An attacker can also use an iPhone to record the smart card reader power LED.) The video must be captured for 65 minutes, during which the reader must constantly perform the operation.

[…]

The attack assumes there is an existing side channel that leaks power consumption, timing, or other physical manifestations of the device as it performs a cryptographic operation.

So don’t expect this attack to be recovering keys in the real world anytime soon. But, still, really nice work.

More details from the researchers.

Sidebar photo of Bruce Schneier by Joe MacInnis.

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: , , , , , , , , ,

More Stories

FBCS data breach impacted 2M individuals

FBCS data breach impacted 2M individuals

45 mins ago AndyC
Cyber-Partisans hacktivists claim to have breached Belarus KGB

Cyber-Partisans hacktivists claim to have breached Belarus KGB

46 mins ago AndyC
FBCS data breach impacted 2M individuals

The Los Angeles County Department of Health Services disclosed a data breach

46 mins ago AndyC

Whale Song Code – Schneier on Security

46 mins ago AndyC
Multiple Brocade SANnav SAN Management SW flaws allow device compromise

Multiple Brocade SANnav SAN Management SW flaws allow device compromise

7 hours ago AndyC
ICICI Bank exposed credit card data of 17000 customers

ICICI Bank exposed credit card data of 17000 customers

13 hours ago AndyC

You may have missed

FBCS data breach impacted 2M individuals

FBCS data breach impacted 2M individuals

45 mins ago AndyC
Cyber-Partisans hacktivists claim to have breached Belarus KGB

Cyber-Partisans hacktivists claim to have breached Belarus KGB

46 mins ago AndyC
FBCS data breach impacted 2M individuals

The Los Angeles County Department of Health Services disclosed a data breach

46 mins ago AndyC

Whale Song Code – Schneier on Security

46 mins ago AndyC
Atos may sell national security activities to French government

Atos may sell national security activities to French government

50 mins ago AndyC

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.