DPA attacks operate by measuring power levels at different parts in chips, particularly trying to identify encryption...
By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.
keys. Researchers use various tools to measure power usage when a device performs operations using encryption keys. Measuring the power usage determines what kind of computational operations are being done by a device. DPA attacks in turn extract knowledge of how encryption algorithms operate to be able to find the encryption keys.
With the advancements in field-programmable gate arrays (chips and chip components designed to be changed by a reseller after the manufacturing process) and advancement in DPA tools, even more attacks will become plausible. Advancements in DPA may make it more viable for attackers to go after the cryptokeys in mobile devices.
One additional point to remember is that attacks only get more creative over time and that any security control can be broken. It's wise to plan ahead when research suggests that exotic attacks will become more accessible. In this case, enterprises should keep these types of attacks in mind when looking into systems that depend on the security of one part of the system to stop a user from analyzing the operations of a device in great detail. Enterprises should plan for these types of attacks and make sure the application or system is easily patched or upgraded to defend against DPA or other types of attacks.
Dig Deeper on Emerging cyberattacks and threats
Related Q&A from Nick Lewis
When NSA cyberweapons went public, attackers bundled them into the EternalRocks malware. Nick Lewis takes a closer look at this new threat and ...continue reading
A Google Docs phishing attack used OAuth tokens to affect more than a million Gmail users. Nick Lewis explains how it happened, and how to defend ...continue reading
A vulnerability in Microsoft's Windows Defender antivirus tool left users open to remote code exploitation. Expert Nick Lewis explains how it ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.