Firewalls: Re: Timing Attacks

Firewalls
(December 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Timing Attacks
From:	"Frank O'Dwyer" <fod @ fws . ilo . dec . com>
Date:	Tue, 12 Dec 1995 10:53:31 +0000
To:	firewalls @ greatcircle . com
In-reply-to:	Your message of "Mon, 11 Dec 1995 17:15:23 EST." <951211171523 . 2021f537 @ hobbes . orl . mmc . com>

> Frank rites:
> >From the description, it sounds like all you need some "better than
> >random guess" at how long en/decryption takes.  And that's certainly 
> >possible without physical access.  For example, if you view a 
> >remote server as an en/decrypting 'black box' (among other things)
> >then you can give it work to do, and observe the response time.
> 
> Can see how that might be possible at the keyboard. Might be possible on 
> a remote terminal with a direct connection. Cannot see how it would work 
> on a packet based network (having enough trouble with a std deviation of 
> 188 usec against an average difference of 17 usec.), just too many random
> factors involved.

True--but NTP and such manage to overcome similar obstacles.  
It's certainly not obvious how it would be done, but I wouldn't
write it off as impossible just yet.

Cheers,
Frank O'Dwyer

Follow-Ups:

Re: Timing Attacks
From: peter @ nmti . com (Peter da Silva)

References:

re: Timing Attacks
From: "A. Padgett Peterson, P.E. Information Security" <PADGETT @ hobbes . orl . mmc . com>

Indexed By Date	Previous:	Re: MS password cracker From: malcolm melville 071 510 8472 <malcolm . melville @ reuters . com>
Indexed By Date	Next:	Re: Timing Attack From: "Frank O'Dwyer" <fod @ fws . ilo . dec . com>
Indexed By Thread	Previous:	re: Timing Attacks From: "A. Padgett Peterson, P.E. Information Security" <PADGETT @ hobbes . orl . mmc . com>
Indexed By Thread	Next:	Re: Timing Attacks From: peter @ nmti . com (Peter da Silva)