漏洞标题
N/A
漏洞描述信息
在 Arm Mbed TLS 2.16.6 之前和 2.7.x 之前在 2.7.15 之前,发现了一个问题。具有足够精确度侧通道测量的 attacker 可以通过(1)利用转换到仿射坐标时的侧通道,通过多次测量来重构 scalar 乘法结果的极值 scalar 的近似坐标;(2)使用 Naccache、Smart 和 Stern 于 2003 年描述的攻击,从那些近似坐标中恢复一些位极值 scalar 的值;(3)使用网格攻击,从中到达用于签名的长期 ECDSA 私钥。通常,当攻击 SGX 软球和控制未信任的操作系统时,攻击者具有足够的访问权限。
CVSS信息
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
An issue was discovered in Arm Mbed TLS before 2.16.6 and 2.7.x before 2.7.15. An attacker that can get precise enough side-channel measurements can recover the long-term ECDSA private key by (1) reconstructing the projective coordinate of the result of scalar multiplication by exploiting side channels in the conversion to affine coordinates; (2) using an attack described by Naccache, Smart, and Stern in 2003 to recover a few bits of the ephemeral scalar from those projective coordinates via several measurements; and (3) using a lattice attack to get from there to the long-term ECDSA private key used for the signatures. Typically an attacker would have sufficient access when attacking an SGX enclave and controlling the untrusted OS.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
ARM mbed TLS 加密问题漏洞
漏洞描述信息
ARM mbed TLS是英国ARM公司的一款为mbed产品提供安全通讯和加密功能的产品。 Arm Mbed TLS 2.16.6之前版本和2.7.15之前的2.7.x版本中存在加密问题漏洞。攻击者可利用该漏洞恢复长期有效的ECDSA私钥。
CVSS信息
N/A
漏洞类别
加密问题