Techly NewsGet the app

Get the latest tech news

Infineon security microcontroller flaw enabled extraction of TPM secret keys


A few months ago, security researcher Thomas Roche presented his fundamental research on secure elements used in the YubiKey 5.

The security element is the Infineon SLE78, which contains a proprietary implementation of the Elliptic Curve Digital Signature Algorithm (ECDSA). Using side-channel attacks and a great deal of smart research, the author discovered a vulnerability in Infineon Technologies' cryptographic library and, as a result, was able to extract the ECDSA secret key from the secure element. 🔮 OT (Operational Technology) - used to ensure secure data transmission and device authentication

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Infineon

Infineon

Photo of extraction

extraction

Photo of TPM

TPM

Related news:

News photo

Infineon teams up with India’s CDIL to build chips for light EVs, energy storage solutions

News photo

Infineon Surges on Outlook Raise That Defies Chip Sector Slump

News photo

FSF Urges Moving Off Microsoft's GitHub to Protest Windows 11's Requiring TPM 2.0

« Wrong ways to use the databases, when the pendulum swung too far
Biofuels policy has been a failure for the climate, new report claims. »