Techly NewsGet the app

Get the latest tech news

Researcher Finds Side-Channel Vulnerability in Post-Quantum Key Encapsulation Mechanism


Slashdot reader storagedude shared this report from The Cyber Express: A security researcher discovered an exploitable timing leak in the Kyber key encapsulation mechanism (KEM) that's in the process of being adopted by NIST as a post-quantum cryptographic standard. Antoon Purnal of PQShield detai...

Slashdot reader storagedude shared this report from The Cyber Express: A security researcher discovered an exploitable timing leak in the Kyber key encapsulation mechanism (KEM) that's in the process of being adopted by NIST as a post-quantum cryptographic standard. "A key part of implementation security is resistance against side-channel attacks, which exploit the physical side-effects of cryptographic computations to infer sensitive information," Purnal wrote. In Purnal's analysis, the Clang compiler was found to emit a vulnerable secret-dependent branch in the poly_frommsg function of the ML-KEM reference code needed in both key encapsulation and decapsulation, corresponding to the expand_secure implementation.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of researcher

researcher

Related news:

News photo

AI speech analysis may aid in assessing and preventing potential suicides, says researcher

News photo

A researcher is suing Meta for the right to ‘turn off’ Facebook’s news feed

News photo

Researcher finds that wood frogs evolved rapidly in response to road salts

« Dad's Diet Before Conception Affects Kids' Health
Uranium fuel planned for high-tech US reactors a weapons risk, scientists say »