ssh – SSL and internet security news

New SSH Vulnerability

November 15, 2023 infossl

academic papers, cryptography, Security technology, signatures, ssh, Uncategorized, vulnerabilities

This is interesting: For the first time, researchers have demonstrated that a large portion of cryptographic keys used to protect data in computer-to-server SSH traffic are vulnerable to complete compromise when naturally occurring computational errors occur while the connection is being established. […] The vulnerability occurs when there are errors during the signature generation that … Read More “New SSH Vulnerability” »

Covert Channel via Two VMs

April 18, 2017 infossl

amazon, Security technology, sidechannelattacks, ssh

Researchers build a covert channel between two virtual machines using a shared cache. Powered by WPeMatico

Powerful Bit-Flipping Attack

August 16, 2016 infossl

academicpapers, authentication, forgery, Security technology, ssh

New research: “Flip Feng Shui: Hammering a Needle in the Software Stack,” by Kaveh Razavi, Ben Gras, Erik Bosman Bart Preneel, Cristiano Giuffrida, and Herbert Bos. Abstract: We introduce Flip Feng Shui (FFS), a new exploitation vector which allows an attacker to induce bit flips over arbitrary physical memory in a fully controlled way. FFS … Read More “Powerful Bit-Flipping Attack” »