A new acoustic cryptanalysis key extraction attack, applicable to GnuPG’s current implementation of RSA.
In other words, “This ups the ante for sure.” Researchers at Technion, Tel Aviv University & Weizmann Institute of Science experimentally demonstrate such attacks can be carried out, using either a plain mobile phone placed next to the computer, or a more sensitive microphone placed 4 meters away.
A suitably-equipped attacker need merely touch the target computer with his bare hand, or get the required leakage information from the ground wires at the remote end of VGA, USB or Ethernet cables.
The attack extracts full 4096-bit RSA decryption keys from laptop computers (of various models), within an hour, using the sound generated by the computer during the decryption of some chosen ciphertexts.
Learn More From The Researchers | Read The Full Research Report