Reading: Crypto “Marketing Experts” End Up in Scams, Affirms Jimmy Song

Bitcoin Breaking News Brief

Team Captures RSA Keys With AM Radio and Cell Phone

Avatar

Tyson O'Ham · @@tkoham | Jun 08, 2016 | 10:39

RSA Bitcoin Breaking News Brief

Team Captures RSA Keys With AM Radio and Cell Phone

Avatar

Tyson O'Ham · @@tkoham | Jun 08, 2016 | 10:39

Send
Share

Coil whine: it’s not just a problem for PC gaming enthusiasts anymore. A recent paper outlines an attack vector for capturing RSA keys by analyzing the noises, RF variations, or electromagnetic changes produced from computers as they do intense computational tasks. Of particular note is their work capturing RSA keys with sound. This so-called ‘coil whine’ is loud and regular enough to be picked up by a cell phone mic attached to an AM radio from as much as a foot away, or over thirty feet using more sophisticated equipment. The process takes time, isn’t stealthy, and isn’t exactly practical for the average hacker to execute, but the vulnerability is there nonetheless. The primary concern here is that those under long-term surveillance may have their keys compromised if using outdated RSA encryption.

Read also: ownCloud Closes Following Launch Of Competing NextCloud

Coil Whine Gives Away Your RSA Keys

 

Any PGP attack vector should be of particular concern to those who own and trade in cryptocurrency, as wallets are secured with this technology. While physical measures can be taken to protect against this type of attack, the recommendation from the white hat team that discovered the vulnerability is to make revisions to cryptography software to hide the activity from acoustic analysis, to prevent general end users from being vulnerable. Luckily, GPG is in the process of implementing this, and other encryption tools are following suit.

RSAThere are a variety of other attacks, with varying degrees of effectiveness, outlined in the original document. Some use RF fluctuations; others exploit changes in electrical potential on cables attached to the machine being attacked (ethernet cables, power cords, display adapters, etc.) While the more privacy conscious of us won’t like the idea that any old hidden microphone, electrical probe, or RF sensitive wire loop could be recording our computer as it chugs through its decryption routines, It’s good to know that the vulnerability is there, and open source projects like Gnu Privacy Guard (GPG) are taking steps to render the exploit ineffective.

 

Thoughs on this new set of physical attack vectors? Let us know in the comments!

Images (credit)

BitStarz Player Lands $2,459,124 Record Win! Could you be next big winner?

Tags: , , , ,
Send
Share
Show comments
transaction fees
Bitcoin Breaking News Brief

Bitcoin Fees Soar as Bithumb Overpays to Move Funds Following Hack

Bitcoin transaction fees have soared over the past 24 hours — likely due to Bithumb cleaning out its hot wallet in an effort to secure its remaining funds after hackers allegedly...

Osato Avan-Nomayo | 1 year ago
Coincheck
Bitcoin Breaking News Brief

Japanese Exchange Coincheck Confirms $420 Million in XEM Stolen...

Major Japanese cryptocurrency exchange Coincheck has just confirmed that more than $600 million worth of XEM were stolen in a hack earlier today. Coincheck Confirms Hack After social...

Wilma Woo | 2 years ago
Bitcoin price
Bitcoin Breaking News Brief

The Horror! Bitcoin Price Hits Lows Not Seen Since Early December

Bitcoin price fell 23% into Friday as a broad shakedown of markets saw every cryptoasset in the top 100 sustain major losses. Stop Me If You’ve Heard This One Before…...

Wilma Woo | 2 years ago