Extracting a 3DES key from an IBM 4758

ravi gadfly at home.com
Tue Nov 20 07:21:49 PST 2001

Previous message: political compass
Next message: Off List Re: Marxism At Yale
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Search LBO-Talk Archives

Limit search to: Subject & Body Subject Author
Sort by: Reverse Sort

in news from the crypto world:

http://www.cl.cam.ac.uk/~rnc1/descrack/

some fellows in britain have found a way to extract the secure keys from the ibm 4758 processor that runs atm machines, etc.

a few worthwhile points from the faq at the URL above:

-------------------------

* So can anyone who downloads this rip off a bank?

Yes and no. You still need to spend some time pulling together all the resources provided here, and most importantly, you need someone on the inside at the bank.

* Who could rip off a bank then?

First off, you need access to a live IBM 4758 i.e. one that protects real key material, in a real bank. Because of the access permissions required, this sort of attack requires you to be a bank manager or security officer that plays a part in manual key entry into the device. In practice there might be about three or four people in the bank with the relevant access privileges. If your insider is not one of these people, there are plenty of ways you can go about stealing one of their passwords.

-------------------------

--ravi

Previous message: political compass
Next message: Off List Re: Marxism At Yale
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the lbo-talk mailing list