Changes

Jump to navigation Jump to search

Switch System Flaws (view source)

Revision as of 01:07, 10 April 2018

41 bytes added ,  01:07, 10 April 2018
no edit summary
Line 43: Line 43:     
However, the Security Engine flushes writes to the internal key tables immediately when AES_KEYTABLE_DATA is written -- this allows one to overwrite a single dword of a key at a time, and thus brute force the contents of keyslots in time (2^32 * 8) = 2^35 instead of 2^256.
 
However, the Security Engine flushes writes to the internal key tables immediately when AES_KEYTABLE_DATA is written -- this allows one to overwrite a single dword of a key at a time, and thus brute force the contents of keyslots in time (2^32 * 8) = 2^35 instead of 2^256.
| Disclosure of contents of "write-only" security engine AES keyslots.
+
| With access to the Security Engine MMIO: disclosure of contents of "write-only" security engine AES keyslots.
 
| HAC-001
 
| HAC-001
 
| Theorized Summer 2017 due to suggestive syntax, confirmed April 9, 2018
 
| Theorized Summer 2017 due to suggestive syntax, confirmed April 9, 2018
Retrieved from "https://switchbrew.org/wiki/Special:MobileDiff/4437"

Navigation menu