this post was submitted on 04 Sep 2024
30 points (100.0% liked)

Yubikey

50 readers
1 users here now

founded 6 months ago
MODERATORS
PuddingFeeling907@lemmy.ca
Beaver@lemmy.ca
30
YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel (arstechnica.com)
submitted 2 months ago by neme@lemm.ee to c/yubikey@lemmy.ca
3 comments fedilink hide all child comments
top 3 comments
sorted by: hot top controversial new old
[–] thisbenzingring@lemmy.sdf.org 5 points 2 months ago

le sigh....

can we please have ONE FUCKING QUIET WEEK!!!!

[–] GameGod@lemmy.ca 4 points 2 months ago* (last edited 2 months ago)

The detailed disclosure PDF (88 pages) is a great read if you're interested in the gory details. The team here did excellent work and there's a lot of interesting avenues opened for future research.

[–] Cornflake_Dog@lemmy.wtf 1 points 3 weeks ago* (last edited 3 weeks ago)

"All YubiKeys running firmware prior to version 5.7—which was released in May and replaces the Infineon cryptolibrary with a custom one—are vulnerable."

I suppose I decided to start using hardware keys at the right time, I just got three 5C NFC keys and a 5C Nano this week and they're all on the newer firmware.