“They’re not that hard to mitigate”: What Cryptographic Library Developers Think About Timing Attacks [IEEE S&P 2022]

This is an old revision of the document!

Authors: Jan Jancar, Marcel Fourné, Daniel De Almeida Braga, Mohamed Sabt, Peter Schwabe, Gilles Barthe, Pierre-Alain Fouque, Yasemin Acar

Primary contact: Jan Jancar <j08ny@mail.muni.cz>

Conference: IEEE Symposium on Security & Privacy 2022

PRE-PRINT PDF BiBTeX

@InProceedings{2022-sp-jancar,

 author = {Jan Jancar and Marcel Fourné and Daniel De Almeida Braga and Mohamed Sabt and Peter Schwabe and Gilles Barthe and Pierre-Alain Fouque and Yasemin Acar},
 address = {San Francisco},
 booktitle = {43rd IEEE Symposium on Security and Privacy},
 keywords = {constant-time, cryptoimplementations, usablesec, libraries, side-channel},
 language = {eng},
 location = {San Francisco},
 publisher = {IEEE},
 title = {“They’re not that hard to mitigate”: What Cryptographic Library Developers Think About Timing Attacks},
 year = {2022}

}

“They’re not that hard to mitigate”: What Cryptographic Library Developers Think About Timing Attacks [IEEE S&P 2022]

Abstract

Research artifacts (supplementary material)