Mitigating Non-Invasive Attacks (U23b)
Advancements in Non-invasive attacks are an increasingly worrisome topic for IT security professionals and product vendors. This talk is about practical approaches to mitigate these side-channel attacks. There is no magic bullet or “one size fits all” approach. However, concrete steps can still be taken, in the context of the type of cryptographic module and how it is deployed / implemented. The speaker will explore multiple scenarios, applicable attacks, and provide a Pros/Cons breakdown of mitigation approaches as well as their relevance to FIPS 140-3.