EUCLEAK is a side-channel vulnerability that requires physical access to a YubiKey 5 Series prior to version 5.7 and (other Infineon based microcontrollers) allowing private key extraction. YSA-20...

ninjalab.io

cross-posted to:
blueteamsec
hackernews

EUCLEAK is a side-channel vulnerability that requires physical access to a YubiKey 5 Series prior to version 5.7 and (other Infineon based microcontrollers) allowing private key extraction. YSA-20...

ninjalab.io

@bOtM to Technical Information Security Content & Discussion • 3 months ago

cross-posted to:
blueteamsec
hackernews

EUCLEAK - NinjaLab

ninjalab.io

Download the Writeup Illustration Romain Flamand – Flamingo Studio – [email protected] Abstract Secure elements are small microcontrollers whose main purpose is to generate/store secrets and then execute cryptographic operations. They undergo the highest level of security evaluations that exists (Common Criteria) and are often considered inviolable, even in the worst-case attack scenarios. Hence, complex secure […]

The original post: /r/netsec by /u/lawrencesystems on 2024-09-03 18:03:56.

Original Title: EUCLEAK is a side-channel vulnerability that requires physical access to a YubiKey 5 Series prior to version 5.7 and (other Infineon based microcontrollers) allowing private key extraction. YSA-2024-03

You must log in or register to comment.

Chat