Severe vulnerability found in RSA encryption
The most widely used software encryption technique has a major weakness, University of Michigan computer scientists have discovered.
RSA authentication is used pretty much everywhere, from home laptops and smartphones to banks and retail systems.
But the scientists found they could foil the security system by varying the voltage supply to the holder of the SSL private key - the consumer's device in the case of copy protection and the retailer or bank in the case of internet communication.
It's unlikely that a hacker could use this approach on a large institution, the researchers say. The findings are more likely to worry media companies and mobile device manufacturers - and their customers.
"The RSA algorithm gives security under the assumption that as long as the private key is private, you can't break in unless you guess it. We've shown that that's not true," said Valeria Bertacco, an associate professor in the Department of Electrical Engineering and Computer Science.
By tweaking the voltage with a home-made device, the U-M researchers were able to extract the private key in about 100 hours.
Varying the electric current essentially stresses out the computer and causes it to make small mistakes in its communications with other clients. These faults reveal small pieces of the private key. Once the researchers caused enough faults, they were able to reconstruct the key offline.
No tamper evidence is left.
But the researchers say they've identified a solution - a common cryptographic technique called 'salting' that randomly changes the order of the digits every time the key is requested.
"We've demonstrated that a fault-based attack on the RSA algorithm is possible," said Professor Todd Austin said. "Hopefully, this will cause manufacturers to make a few small changes to their implementation of the algorithm. RSA is a good algorithm and I think, ultimately, it will survive this type of attack."