Security News > 2024 > January > Side Channels Are Common
Thus, we show, it is possible to conduct physical side-channel attacks on computation by remote and purely passive analysis of commonly-shared channels.
These attacks require neither physical proximity, nor the ability to run code on the target or configure its hardware.
We argue, physical side channels on PCs can no longer be excluded from remote-attack threat models.
We analyze the computation-dependent leakage captured by internal microphones, and empirically demonstrate its efficacy for attacks.
In one scenario, an attacker steals the secret ECDSA signing keys of the counterparty in a voice call.
In another, the attacker detects what web page their counterparty is loading.
News URL
https://www.schneier.com/blog/archives/2024/01/side-channels-are-common.html