all InfoSec news
High-assurance zeroization
Nov. 6, 2023, 2 a.m. |
IACR News www.iacr.org
ePrint Report: High-assurance zeroization
Santiago Arranz Olmos, Gilles Barthe, Ruben Gonzalez, Benjamin Grégoire, Vincent Laporte, Jean-Christophe Lechenet, Tiago Oliveira, Peter Schwabe
In this paper we revisit the problem of erasing sensitive data from memory and registers during return from a cryptographic routine. While the problem and related attacker model is fairly easy to phrase, it turns out to be surprisingly hard to guarantee security in this model when implementing cryptography in common languages such as C/C++ or Rust. We revisit …
assurance attacker cryptographic data easy eprint report high memory peter problem report return sensitive sensitive data
More from www.iacr.org / IACR News
A Deniability Analysis of Signal's Initial Handshake PQXDH
3 days, 1 hour ago |
www.iacr.org
BGJ15 Revisited: Sieving with Streamed Memory Access
3 days, 1 hour ago |
www.iacr.org
Quantum Key-Revocable Dual-Regev Encryption, Revisited
3 days, 1 hour ago |
www.iacr.org
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Senior - Penetration Tester
@ Deloitte | Madrid, España
Associate Cyber Incident Responder
@ Highmark Health | PA, Working at Home - Pennsylvania
Senior Insider Threat Analyst
@ IT Concepts Inc. | Woodlawn, Maryland, United States