Bleeping Computer

TPM Chipsets Generate Insecure RSA Keys. Multiple Vendors Affected

Infineon TPM chipsets that come with many modern-day motherboards generate insecure RSA encryption keys that put devices at risk of attack. TPM stands for Trusted Platform Module (TPM), which is an ...
InfoQ

Poor Random Number Generation Makes 1 in Every 172 RSA Certificates Vulnerable

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Vivek Yadav, an engineering manager from ...
Ars Technica

Millions of high-security crypto keys crippled by newly discovered flaw

A crippling flaw in a widely used code library has fatally undermined the security of millions of encryption keys used in some of the highest-stakes settings, including national identity cards, ...
Bleeping Computer

GitHub revokes duplicate SSH auth keys linked to library bug

GitHub has revoked weak SSH authentication keys generated using a library that incorrectly created duplicate RSA keypairs. GitHub allows you to authenticate to their service without a user name and ...
Infosecurity-magazine.com

The Dark Side of Cryptography: Kleptography in Black-Box Implementations

Bernhard Esslinger explores the dark side of cryptography Figure 1: Kleptographic attacks are possible in each of the components of a cryptosystem shown here. The encapsulation of a black-box ...
Threat Post

Researchers Find Way to Extract 4096-Bit RSA Key via Sound

Scientists have proved that they can extract a 4096-bit RSA key from a laptop using an acoustic side-channel attack that enables them to record the noise coming from the laptop during decryption, ...