As of August 2020 the site you are on (wiki.newae.com) is deprecated, and content is now at rtfm.newae.com.

Tutorial A7 Glitch Buffer Attacks

From ChipWhisperer Wiki
Revision as of 08:34, 28 June 2016 by Gdeon (Talk | contribs) (Made page)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

This tutorial discusses a specific type of glitch attack. It shows how a simple printing loop can be abused, causing a target to print some otherwise private information. This attack will be used to recover a plaintext without any knowledge of the encryption scheme being used.

Background

Real Firmware

Bootloader Setup

The Attack Plan

The Sensitive Code

Disassembly

Attack Script & Results

Ideas

  • Change hex file to use BRLT
  • Use volatile loop variables