Nintendo Switch Brew

Switch System Flaws: Difference between revisions

← Older editNewer edit →
No edit summary
No edit summary
Line 43: Line 43:


However, the Security Engine flushes writes to the internal key tables immediately when AES_KEYTABLE_DATA is written -- this allows one to overwrite a single dword of a key at a time, and thus brute force the contents of keyslots in time (2^32 * 8) = 2^35 instead of 2^256.
However, the Security Engine flushes writes to the internal key tables immediately when AES_KEYTABLE_DATA is written -- this allows one to overwrite a single dword of a key at a time, and thus brute force the contents of keyslots in time (2^32 * 8) = 2^35 instead of 2^256.
| With access to the Security Engine MMIO: disclosure of contents of "write-only" security engine AES keyslots.
| None
| HAC-001
| HAC-001
| Theorized Summer 2017 due to suggestive syntax, confirmed April 9, 2018
| Theorized Summer 2017 due to suggestive syntax, confirmed April 9, 2018
Retrieved from "https://switchbrew.org/wiki/Switch_System_Flaws"