Minerva attack side channels on OpenSSL

George Pantelakis gpantela at redhat.com
Tue May 14 16:07:30 UTC 2024


Hello openssl-users,

My team and I have identified some Minerva attack[1] side channels in
various architectures. We are using statistical analysis to identify such
side channels. For each architecture we have tested and found out, it is
vulnerable we have created an upstream issue ( Intel[2], s390x[3],  power
PC[4],  ARM[5] ). If you want to test another architecture, we have created
a toolkit[6] that you can use to perform the statistical tests easily.

*Sincerely,*
*George Pantelakis*

1 - https://minerva.crocs.fi.muni.cz/
2 - https://github.com/openssl/openssl/issues/23860/
3 - https://github.com/openssl/openssl/issues/24252/
4 - https://github.com/openssl/openssl/issues/24253/
5 - https://github.com/openssl/openssl/issues/24254/
6 - https://github.com/GeorgePantelakis/minerva-toolkit/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20240514/1d878baf/attachment.htm>


More information about the openssl-users mailing list