Skip to content
This repository has been archived by the owner on Apr 12, 2023. It is now read-only.

mgaudet/229-timingDemo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.gitignore
.gitignore
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
guess.c
guess.c
 
 
secret.c
secret.c
 
 
setthrottle.sh
setthrottle.sh
 
 
unsetthrottle.sh
unsetthrottle.sh
 
 

Repository files navigation

This repo contains a demo of a timing attack. A string contained in secret.c is extracted via a timing side-channel of a "checkPassword" function.

build, then run guess 50000 to attempt 50000 guesses per character. On my machine this is able to reasonably reliably extract the result.

The throttle scripts are used to disable/enable CPU frequency scaling which can make the demo unreliable.

Explore what happens if you replace the checkPassword call in timeInput wiht checkPasswordConstant

NOTE:

This has ONLY BEEN TESTED ON x64 linux.

About

Timing attack demo from CMPUT 229

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages