Pulogalamu ya ProHoster > Blog > nkhani zapaintaneti > New Side Channel Attack Technique Kubwezeretsanso Makiyi a ECDSA

New Side Channel Attack Technique Kubwezeretsanso Makiyi a ECDSA

Ofufuza ochokera ku yunivesite. Masaryk fukufuku zambiri za zofooka m'makhazikitsidwe osiyanasiyana a ECDSA/EdDSA algorithm yopanga siginecha ya digito, yomwe imakupatsani mwayi wobwezeretsanso mtengo wa kiyi yachinsinsi potengera kutulutsa kwa chidziwitso pazambiri zomwe zimatuluka mukamagwiritsa ntchito njira zowunikira za chipani chachitatu. Zofookazo zidatchedwa Minerva.

Ntchito zodziwika bwino zomwe zimakhudzidwa ndi njira yomwe akuwukira ndi OpenJDK/OracleJDK (CVE-2019-2894) ndi laibulale. libgcrypt (CVE-2019-13627) yogwiritsidwa ntchito ku GnuPG. Komanso sachedwa vuto MatrixSSL, Crypto++, wolfCrypt, Zozungulira, jsrsasign, python-ecdsa, ruby_ecdsa, fastecdsa, zosavuta ecc ndi Athena IDProtect smart cards. Osayesedwa, koma makadi a Valid S/A IDflex V, SafeNet eToken 4300 ndi TecSec Armored Card, omwe amagwiritsa ntchito gawo la ECDSA lokhazikika, amanenedwanso kuti ali pachiwopsezo.

Vutoli lakhazikitsidwa kale pakutulutsidwa kwa libgcrypt 1.8.5 ndi wolfCrypt 4.1.0, mapulojekiti otsalawo sanapange zosintha. Mutha kutsata kukonza kwachiwopsezo chomwe chili mu phukusi la libgcrypt pamagawidwe patsamba awa: Debian, Ubuntu, RHEL, Fedora, kutsegulaSUSE / SUSE, FreeBSD, Chipilala.

Zowopsa osatengeka OpenSSL, Botan, mbedTLS ndi BoringSSL. Simunayesedwebe Mozilla NSS, LibreSSL, Nettle, BearSSL, cryptlib, OpenSSL mu FIPS mode, Microsoft .NET crypto,
libkcapi kuchokera ku Linux kernel, Sodium ndi GnuTLS.

Vutoli limayamba chifukwa chotha kudziwa mayendedwe amtundu uliwonse panthawi yochulukirachulukira mu elliptic curve operation. Njira zosalunjika, monga kuyerekezera kuchedwa kwa makompyuta, zimagwiritsidwa ntchito potulutsa zidziwitso. Kuwukira kumafuna mwayi wopanda mwayi kwa wolandila pomwe siginecha ya digito imapangidwira (osati osaphatikizidwa ndi kuukira kwakutali, koma ndizovuta kwambiri ndipo zimafuna kuchuluka kwa deta kuti zifufuzidwe, kotero zikhoza kuonedwa kuti sizingatheke). Za kutsitsa zilipo zida zogwiritsidwa ntchito kuukira.

Ngakhale kukula kochepa kwa kutayikirako, kwa ECDSA kuzindikira ngakhale pang'ono pang'ono ndi chidziwitso cha vekitala (nonce) ndikokwanira kuchita chiwembu kuti mubwezeretsenso makiyi onse achinsinsi. Malinga ndi olemba njira, kuti apeze bwino fungulo, kusanthula kwa siginecha mazana angapo mpaka zikwi zingapo za digito zomwe zimapangidwira mauthenga odziwika kwa wotsutsa ndizokwanira. Mwachitsanzo, masiginecha a digito okwana 90 adawunikidwa pogwiritsa ntchito secp256r1 elliptic curve kuti adziwe kiyi yachinsinsi yomwe imagwiritsidwa ntchito pamakhadi anzeru a Athena IDProtect kutengera chip Inside Secure AT11SC. Nthawi yonse yakuukira inali mphindi 30.

Source: opennet.ru

Kuwonjezera ndemanga