From mboxrd@z Thu Jan  1 00:00:00 1970
From: Jim Choate <ravage@ssz.com>
To: 9fans@cse.psu.edu
Subject: Re: [9fans] secret stuff
In-Reply-To: <36cecabb67b6c8621de499a79aba4519@plan9.bell-labs.com>
Message-ID: <Pine.LNX.3.96.1020615112432.1158k-100000@einstein.ssz.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Date: Sat, 15 Jun 2002 11:32:15 -0500
Topicbox-Message-UUID: aec5a32e-eaca-11e9-9e20-41e7f4b1d025


On Sat, 15 Jun 2002 presotto@plan9.bell-labs.com wrote:

> That's not really true.  We've had numerous smart cards come through with
> tamper protection.  You couldn't get at the image without tearing it
> apart, filing down the chips, and probing the memory physicaly.  IBM
> made that even hard to do.  Certainly not something you did in 10
> minutes.

There are a variety of ways to get to the data on the card. There is even
a 'strobe attack' whereby one can flash extremely bright light on the
card. You can 'jitter' the power supply and clocks, etc.

The 'tamper proof' mechanisms are there to prevent PHYSICAL attacks only.
There are other attacks.

ps I work for IBM.


 --
    ____________________________________________________________________

              When I die, I would like to be born again as me.

                                            Hugh Hefner
     ravage@ssz.com                                         www.ssz.com
     jchoate@open-forge.org                          www.open-forge.org

    --------------------------------------------------------------------