Say you have a web application that's performing AES encryption. What sorts of side channel attacks should one keep an eye out for?
Timing attacks affect RSA more than symmetric ciphers in-so-far as I know.
Any ideas?
Asked
Active
Viewed 1,124 times
1 Answers
2
In my limited understanding, cache attacks should be consider the most. In AES encryption, one need to subBytes using S-Box. So, for data that has been used and saved in cache, it will takes less time to subBytes. So, Mallory can learn about the pattern of plaintext.
dtyfulghjgu
- 36
- 2