> -----Original Message-----
> From: owner-sclinuxdrizzle.com [mailto:owner-sclinuxdrizzle.com]On
> Behalf Of McMechan, James
> Sent: Wednesday, January 23, 2002 1:20 AM
> To: sclinuxlinuxnet.com
> Subject: RE: MUSCLE smartcard security hacks
>
>
> If a person having the card and a valid PIN number wants to extract the
> secret keys it is hard to prevent them from doing so since any number of
> chosen plaintext attacks can be run. If someone has only the card without
> the PIN it is much much harder in a well designed card.

Excuse me, but I have a slightly different opinion.

The amount of known/cipher text that is needed to perform a successful
attack against RSA is such a big that the entire age of universe is not
enough to perform the attack even with the fastest smart card.

To find a proper references that "proof" the words above is left as an
exercise to the reader ;)

Vesa

 Vesa Suontama <vsuontamssh.fi> Tel: +358-40-700 0131
                                     Fax: +358-9-8565 7151
 SSH Communications Security Corp Fredrikinkatu 42
 http://www.ssh.com FIN-00100 Helsinki, Finland

***************************************************************
Unix Smart Card Developers - M.U.S.C.L.E.
(Movement for the Use of Smart Cards in a Linux Environment)
http://www.linuxnet.com/
To unsubscribe send an email to majordomolinuxnet.com with
unsubscribe sclinux
***************************************************************

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]