RSA Key Extraction via Low-Bandwidth Acoustic Cryptanalysis

✨ Summary

This paper introduces a novel side-channel attack method called acoustic cryptanalysis, targeting RSA and ElGamal cryptographic implementations. By monitoring the acoustic signals emitted by a computer’s CPU, especially during decryption processes, the authors demonstrate the ability to recover secret keys. This attack can be executed from distances up to four meters using a standard microphone, showcasing the potential for non-invasive attacks. The research suggests various techniques to enhance the efficacy of key extraction and proposes mitigations to avoid acoustic leakage.

The implications of this study have influenced subsequent research in the field of cryptographic security, particularly in understanding and mitigating side-channel attacks. The paper has been referenced in multiple studies exploring alternative emanation threats, such as electromagnetic and optical side channels, thus contributing significantly to the broader conversation around securing cryptographic systems in non-secure environments.

Notable citations referencing this work include: - Lipp et al.’s work on “Meltdown: Reading Kernel Memory from User Space” (https://people.csail.mit.edu/vlk/meltdown.pdf) - Gandolfi et al.’s survey on side-channel attacks, “Electromagnetic Analysis (EMA): Measures and Counter-Measures for Smart Cards” (https://www.wisekey.com/) - Spreitzer et al.’s comprehensive review on “A Systematic Analysis of Trusted Execution Environments on Mobile Devices” (https://www.trusted-system.eu/sites/default/files/Spreitzer_et_al_TEEMobiles2019.pdf)