all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Passive SSH Key Compromise via Lattices

Add to bookmarks
Nov. 6, 2023, 1:54 a.m. |

IACR News www.iacr.org

ePrint Report: Passive SSH Key Compromise via Lattices

Keegan Ryan, Kaiwen He, George Arnold Sullivan, Nadia Heninger


We demonstrate that a passive network attacker can opportunistically obtain private RSA host keys from an SSH server that experiences a naturally arising fault during signature computation. In prior work, this was not believed to be possible for the SSH protocol because the signature included information like the shared Diffie-Hellman secret that would not be available to a passive network observer. We show …

attacker compromise computation eprint report experiences host key keys network private report rsa server signature ssh ssh key sullivan work

Visit resource

More from www.iacr.org / IACR News

EISA 2024: The 5th International Conference on Emerging Information Security and Applications 13 hours ago | www.iacr.org
applications august calendar china +13
Multiple academic teaching positions 13 hours ago | www.iacr.org
academic candidates computer computer science +12
ISCISC 2024: 21st International ISC Conference on Information Security and Cryptology 13 hours ago | www.iacr.org
august calendar conference cryptology +13
CRYPTOLOGY2024: 9th International Cryptology and Information Security Conference 2024 13 hours ago | www.iacr.org
calendar conference cryptology date +13
Security in Times of Surveillance 13 hours ago | www.iacr.org
calendar date event event calendar +4
Mempool Privacy via Batched Threshold Encryption: Attacks and Defenses 17 hours ago | www.iacr.org
applications attacks defenses defi +12
Blockchain Price vs. Quantity Controls 17 hours ago | www.iacr.org
blockchain blockchains controls cryptocurrency +8
Agile, Post-quantum Secure Cryptography in Avionics 1 day ago | www.iacr.org
aaron agile alice avionics +20
Private Analytics via Streaming, Sketching, and Silently Verifiable Proofs 1 day ago | www.iacr.org
ada analytics collection compute +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Information Security Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

Principal Security Researcher (Advanced Threat Prevention)

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

EWT Infosec | IAM Technical Security Consultant - Manager

@ KPMG India | Bengaluru, Karnataka, India
View on infosec-jobs.com

Security Engineering Operations Manager

@ Gusto | San Francisco, CA; Denver, CO; Remote
View on infosec-jobs.com

Network Threat Detection Engineer

@ Meta | Denver, CO | Reston, VA | Menlo Park, CA | Washington, DC
View on infosec-jobs.com
View more jobs