BLOGS WEBSITE
CDIT Welcomes Michelle McClintock, Matt Hart, Gefei Li and Tom Allan
This week we welcome four new members to the CDIT team. Michelle McClintock joins CDIT to complete her PhD research on an organisational framework for enterprise security architecture. While modern enterprise architecture frameworks have planned to capture a holistic picture of an organisation, security has been identified as a separate component which fails to have […]
Comments Off on CDIT Welcomes Michelle McClintock, Matt Hart, Gefei Li and Tom Allan
IEEE S&P: Last-level cache side-channel attacks are practical
Working with colleagues from Princeton University and from NICTA we demonstrate how to implement last-level cache side channels, measure their capacity and demonstrate that their resolution is sufficient for leaking cryptographic keys between co-located virtual machines and across multiple processor cores. F. Liu, Y. Yarom, Q. Ge, G. Heiser, and R.B. Lee, Last-Level Cache Side-Channel […]
Comments Off on IEEE S&P: Last-level cache side-channel attacks are practical
Cyber security summer program at the University of Adelaide
Last week CDIT hosted 16 year 11 and 12 students for a week long program on cyber security. During the program the students learned about cyber security and explored and practice some basic techniques including password cracking, cross-site scripting and SQL injection.
Summer research projects
We welcome Jack Gerrits, Sean Marciniak and David Piper who have joined CDIT to work on three summer research projects. Jack is looking at ways of exploiting Google Chrome Native clients to mount side-channel attacks on the user’s machine. Sean is investigating the potential for attacking machines using malicious USB devices. David is looking at intercepting […]
CT-RSA 2015: Just a Little Bit More
Extending our work from CHES 2014, we exploit a weakness in several standard curves to achieve an order of magnitude reduction in the number of signatures we need to observe in order to break the key. J. van de Pol, N. P. Smart and Y.Yarom, Just a Little Bit More. accepted for CT-RSA 2015.
Comments Off on CT-RSA 2015: Just a Little Bit More
Visitor from the Worcester Polytechnic Institue: Gorka Irazoqui
Gorka Irazoqui from the Worcester Polytechnic Institute (MA, USA) visited CDIT this week. During his visit, Gorka presented his recent works on LLC-based side channel attacks on AES.
CDIT presenting at ECC 2014
Yuval Yarom recently attended the workshop on Elliptic Curves Cryptography 2014 at Chennai, India, where he was invited to present our work on cryptanalysing ECDSA Side-channel attacks on ECDSA Side-channel attacks aim to break cryptosystems by exploiting information leaked through the interaction of the Implementation of the cryptosystem with its environment. This talk presents some […]
Sam Jaeschke Joins CDIT
We welcome Sam Jaeschke, who has joined CDIT to complete his Honours year research project. Sam work will extend our earlier work on micro-architectural side-channel attacks. Past research has demonstrated that Intel X86 processors are vulnerable to the FLUSH+RELOAD side-channel attack. The attack allows malicious virtual machine to recover secret information from a victim virtual machine […]
CHES 2014: “Ooh Aah… Just a Little Bit” : A Small Amount of Side Channel Can Go a Long Way
Working with colleagues from the University of Bristol and from our local School of Mathematical Sciences, we combine our FLUSH+RELOAD side channel with an improved lattice attack to break the Bitcoin elliptic curve. N. Benger, J. van de Pol, N. P. Smart and Y.Yarom, “Ooh, Aah… Just a Little Bit”: A Small Amount of Side […]
Comments Off on CHES 2014: “Ooh Aah… Just a Little Bit” : A Small Amount of Side Channel Can Go a Long Way