Pseudorandom Black Swans: Cache Attacks on CTR_DRBG

Pseudorandom Black Swans: Cache Attacks on CTR_DRBG

TheIACR via YouTube Direct link

Interrupting SGX Execution

20 of 23

20 of 23

Interrupting SGX Execution

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Pseudorandom Black Swans: Cache Attacks on CTR_DRBG

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Lesson Learned (the hard way)
  3. 3 Standardized Designs
  4. 4 CTR_DRBG: Design
  5. 5 CTR_DRBG: Generate Function
  6. 6 Key Rotation Flaw
  7. 7 Problem 1: Key Not Rotated Often Enough
  8. 8 Problem 2: Lack of Entropy
  9. 9 Is a side-channel attack on CTR_DRBG realistic?
  10. 10 FIPS Requirements
  11. 11 Finding long PRG outputs in TLS handshake
  12. 12 Attack Scenario
  13. 13 Attacking TLS 1.2 RSA key exchange with client auth
  14. 14 Results: State Recovery
  15. 15 Attack Complexity
  16. 16 AES Internal State
  17. 17 Examining the Differential Structure
  18. 18 Differential Attack
  19. 19 Towards a realistic attack
  20. 20 Interrupting SGX Execution
  21. 21 First Attempt
  22. 22 Experimental Setup
  23. 23 Lessons

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.