Description:
Explore a comprehensive analysis of Password Recovery Attacks against SRP Implementations in the Wild in this 29-minute conference talk from the Workshop on Attacks in Cryptography 2021. Delve into the intricacies of Password-Authenticated Key Exchange (PAKE) protocols, focusing on the Secure Remote Password (SRP) protocol. Examine the FLUSH+RELOAD technique, modular exponentiation in OpenSSL, and optimized square-and-multiply algorithms. Understand the attacker model, classical workflow, trace acquisition, and interpretation methods. Discover the impact on various projects and programming languages, and learn about potential mitigations and the patching process for enhanced security.
PARASITE - Password Recovery Attack Against SRP Implementations in the Wild
Add to list
#Computer Science
#Cryptography
#Information Security (InfoSec)
#Cybersecurity
#Dictionary Attacks
#OpenSSL