Revision as of 13:41, 19 December 2024 edit TommyGundam (talk \| contribs) Extended confirmed users 1,887 edits m →Known attacks: actually tao and wu's 2015 paper improved the time complexity from 2^126.2 to 2^126.01 on aes-128, thus adding the word "approximately" for better accuracy ← Previous edit		Revision as of 14:53, 19 December 2024 edit undo TommyGundam (talk \| contribs) Extended confirmed users 1,887 edits m →Side-channel attacks: that one is a conference paper, so it should use {{cite conference}} Next edit →
Line 171: In March 2016, Ashokkumar C., Ravi Prakash Giri and Bernard Menezes presented a side-channel attack on AES implementations that can recover the complete 128-bit AES key in just 6–7 blocks of plaintext/ciphertext, which is a substantial improvement over previous works that require between 100 and a million encryptions.<ref>{{cite book \|year=2016 \|author1=Ashokkumar C. \|title=2016 IEEE European Symposium on Security and Privacy (EuroS&P) \|pages=261–275 \|author2=Ravi Prakash Giri \|author3=Bernard Menezes \|doi=10.1109/EuroSP.2016.29 \|isbn=978-1-5090-1751-5 \|s2cid=11251391}}</ref> The proposed attack requires standard user privilege and key-retrieval algorithms run under a minute. Many modern CPUs have built-in [[AES instruction set\|hardware instructions for AES]], which protect against timing-related side-channel attacks.<ref>{{cite ~~web~~conference \|~~url~~last1=~~https~~Mowery \|first1=Keaton \|last2=Keelveedhi \|first2=Sriram \|last3=Shacham \|first3=Hovav \|conference=CCS'12:~~//cseweb.ucsd.edu/~kmowery/papers/aes~~ the ACM Conference on Computer and Communications Security \|date=19 October 2012 \|___location=Raleigh, North Carolina, USA \|pages=19-~~cache-timing.pdf~~24 \|title=Are AES x86 ~~Cache~~cache ~~Timing~~timing ~~Attacks~~attacks ~~Still~~still ~~Feasible~~feasible? \|~~website~~url=https://cseweb.ucsd.edu ~~\|url~~/~kmowery/papers/aes-~~status=live~~cache-timing.pdf \|archive-url=https://web.archive.org/web/20170809152309/http://cseweb.ucsd.edu/~kmowery/papers/aes-cache-timing.pdf \|archive-date=2017-08-09 \|doi=10.1145/2381913.2381917}}</ref><ref>{{cite web \|url=https://www.intel.in/content/dam/doc/white-paper/enterprise-security-aes-ni-white-paper.pdf \|title=Securing the Enterprise with Intel AES-NI \|access-date=2017-07-26 \|url-status=live \|archive-url=https://web.archive.org/web/20130331041411/http://www.intel.in/content/dam/doc/white-paper/enterprise-security-aes-ni-white-paper.pdf \|archive-date=2013-03-31 \|website=[[Intel Corporation]]}}</ref> === Quantum attacks ===

Advanced Encryption Standard: Difference between revisions