@[email protected] to [email protected]English • 2 months agoYubiKeys are vulnerable to cloning attacks thanks to newly discovered side channelarstechnica.comexternal-linkmessage-square21fedilinkarrow-up187arrow-down10cross-posted to: cybersecuritytechnology
arrow-up187arrow-down1external-linkYubiKeys are vulnerable to cloning attacks thanks to newly discovered side channelarstechnica.com@[email protected] to [email protected]English • 2 months agomessage-square21fedilinkcross-posted to: cybersecuritytechnology
minus-square@[email protected]linkfedilink12•2 months agoTotally a non issue unless a government arrested somebody with the intent to gain their key because : "The attacks require about $11,000 worth of equipment and a sophisticated understanding of electrical and cryptographic engineering. "
minus-square@[email protected]linkfedilinkEnglish3•2 months agoIf they arrest someone to gain access to their key, they don’t need this attack to use their key. They can just use their key.
minus-square@[email protected]linkfedilink1•2 months agoSorry I was thinking of when you have yubikey setup with PIN code for access. But yeah, I guess the attack vector is clandestine theft and replace.
Totally a non issue unless a government arrested somebody with the intent to gain their key because : "The attacks require about $11,000 worth of equipment and a sophisticated understanding of electrical and cryptographic engineering. "
If they arrest someone to gain access to their key, they don’t need this attack to use their key. They can just use their key.
Sorry I was thinking of when you have yubikey setup with PIN code for access. But yeah, I guess the attack vector is clandestine theft and replace.