IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [timing-attack]

77 questions
14
votes
3 answers

Are there any successful cases of timing attacks over the internet?

Potential timing attacks are always brought up in one context or the other but I don't think I've ever read a case where someone has actually executed such an attack over the internet.
joseconte2018
  • 149
  • 3
8
votes
2 answers

How to slow down program execution

I have a simple executable binary. It takes as input a user supplied string and compares it with a private string using strcmp. How can I slow down the execution of this program such that I can launch a statistical timing attack on the string…
robertkin
  • 277
  • 2
  • 6
7
votes
1 answer

Are there any working proof-of-concept string comparison timing attacks?

I've tried to reproduce a string comparison timing oracle in two languages (Java and Python), but I'm not seeing any correlation in the timing based on the input into the comparison. Are there any examples out there, or do you see an issue with my…
Alex Lauerman
  • 495
  • 5
  • 8
7
votes
2 answers

Can't explain data from side channel attack attempt

I found the comparison function below (slightly modified) from a crypto library I was using. I was curious about the potential vulnerability to side channel attacks. Specifically, the character comparison is only done if the character being compared…
Michael Mior
  • 401
  • 1
  • 3
  • 11
4
votes
0 answers

What is the state of the art in internet timing attacks?

What is the shortest timing difference resolved by a timing attack demonstrated over the internet (not just a LAN)? This paper from 2009 suggests 15µs. By how much has that number improved?
Brian Hempel
  • 141
  • 4
4
votes
1 answer

Timing attacks in managed code

I have heard that running code in a managed language, e.g. Java in the JVM, is impossible to protect against timing attacks due to the JITing nature of most managed runtimes. In concept I can agree with this, but I would like to understand what the…
Anthony Kraft
  • 1,179
  • 1
  • 9
  • 18
4
votes
1 answer

SecureString how to compare against another SecureString that is safe against Timing Attacks?

I see Microsoft provide a SecureString: https://msdn.microsoft.com/en-us/library/system.security.securestring(v=vs.110).aspx, is it possible to compare two SecureStrings and ensure it is safe against Timing Attacks?
Coppermill
  • 141
  • 3
3
votes
2 answers

Cross-language primitives against string comparison timing attacks?

Related, not a duplicate: Timing Safe String Comparison - Avoiding Length Leak I know about cache misses, let's assume we fit in a cache line swimmingly. Thomas' excellent answer doesn't talk about jitter except that introduced by GC, nor does it…
Deer Hunter
  • 5,347
  • 6
  • 35
  • 50
2
votes
1 answer

Is DNSSEC vulnerable to (remote) timing attacks?

I wondered if DNSSEC would be vulnerable to (remote) timing attacks, unlike TLS, signatures don't have to be recalculated each time. So how would you be able to exploit timing information in the first place? Also see this quote: Can’t DNSSEC…
Yustack
  • 141
  • 2
0
votes
1 answer

Constant-time processing only for failures okay?

Premise: When looking up a secret value in a DB (API key, token, maybe username) it's near-impossible to guarantee that the lookup doesn't leak something about the similarity of the candidate value to an existing value. So it makes sense to force…
adam-p
  • 125
  • 4