Abstract:
Timing attacks enable an attacker to extract secret information from a cryptosystem by observing timing differences with respect to different inputs given to an encryption or decryption algorithm. Werner Schindler has proposed a timing attack on smart card devices. We implemented this attack based on the same approach for RSA implementation provided by OpenSSL library. The attacking client can obtain private key information demonstrating the vulnerability of even software implementations of RSA to these attacks.
