PHPnews.io

It's All About Time

Written by Ircmaxell / Original link on Nov. 28, 2014

An interesting pull request has been opened against PHP to make bin2hex() constant time. This has lead to some interesting discussion on the mailing list (which even got me to reply :-X). There has been pretty good coverage over remote timing attacks in PHP, but they talk about string comparison. I'd like to talk about other types of timing attacks.

Read more » Ircmaxell?i=GAYuW6ka_gc:QgaRLvaBeag:4cEx4HpKnUU Ircmaxell?d=yIl2AUoC8zA Ircmaxell?i=GAYuW6ka_gc:QgaRLvaBeag:V_sGLiPBpWU Ircmaxell?d=qj6IDK7rITs GAYuW6ka_gc

googleblog calevans calevans krakjoe Timing-Attack ircmaxell

« New Job With Siftware - How to Build an OctoberCMS Theme »