--- Day changed Thu Aug 23 2018
00:06 -!- [b__b] [~b__b]@ec2-54-85-45-223.compute-1.amazonaws.com] has joined #secp256k1     
00:58 -!- les13 [~les@115-39-31-58.aichieast1.commufa.jp] has joined #secp256k1     
01:00 -!- les13 [~les@115-39-31-58.aichieast1.commufa.jp] has quit [Remote host closed the connection]     
02:22 -!- Guest70578 [~GAit@101.ip-213-32-22.eu] has quit [Quit: WeeChat 1.0.1]     
02:23 -!- GAit [~GAit@unaffiliated/gait] has joined #secp256k1     
02:49 -!- bitch14 [~bitch@125.136.141.29] has joined #secp256k1     
02:50 -!- bitch14 [~bitch@125.136.141.29] has quit [Remote host closed the connection]     
02:56 -!- deusexbeer [~deusexbee@079-170-138-002-dynamic-pool-adsl.wbt.ru] has quit [Ping timeout: 252 seconds]     
03:03 -!- deusexbeer [~deusexbee@080-250-076-215-dynamic-pool-adsl.wbt.ru] has joined #secp256k1     
03:16 -!- ken2812221_ is now known as ken2812221     
04:29 -!- weez17 [~isaac@unaffiliated/weez17] has quit [Quit: Lost terminal]     
04:55 -!- belcher_ [~belcher@unaffiliated/belcher] has joined #secp256k1     
06:09 -!- belcher_ [~belcher@unaffiliated/belcher] has quit [Quit: Leaving]     
06:15 -!- vdamewood [~vdamewood@122-222-82-233.east.ap.gmo-isp.jp] has joined #secp256k1     
06:20 -!- vdamewood [~vdamewood@122-222-82-233.east.ap.gmo-isp.jp] has quit [Remote host closed the connection]     
06:23 -!- jcorgan [~jcorgan@unaffiliated/jcorgan] has quit [Ping timeout: 265 seconds]     
06:23 -!- jcorgan [~jcorgan@64-142-68-61.dsl.static.sonic.net] has joined #secp256k1     
07:17 -!- pendo324 [~pendo324@c-98-211-210-65.hsd1.fl.comcast.net] has joined #secp256k1     
07:19 -!- pendo324 [~pendo324@c-98-211-210-65.hsd1.fl.comcast.net] has quit [Read error: Connection reset by peer]     
10:29 -!- Erenzie29 [~Erenzie@agrx212.neoplus.adsl.tpnet.pl] has joined #secp256k1     
10:34 -!- Erenzie29 [~Erenzie@agrx212.neoplus.adsl.tpnet.pl] has quit [Remote host closed the connection]     
10:46 -!- TheMesquito15 [~TheMesqui@178.141.128.125] has joined #secp256k1     
10:49 -!- TheMesquito15 [~TheMesqui@178.141.128.125] has quit [Remote host closed the connection]     
12:01 -!- meshcollider_ [uid246294@gateway/web/irccloud.com/x-nmtqdivaiywxuoiu] has joined #secp256k1     
12:25 -!- FireFly11 [~FireFly@121.162.151.131] has joined #secp256k1     
12:30 -!- FireFly11 [~FireFly@121.162.151.131] has quit [Remote host closed the connection]     
14:20 -!- meshcollider_ [uid246294@gateway/web/irccloud.com/x-nmtqdivaiywxuoiu] has quit [Quit: Connection closed for inactivity]     
15:36 -!- lukedashjr [~luke-jr@unaffiliated/luke-jr] has joined #secp256k1     
15:38 -!- luke-jr [~luke-jr@unaffiliated/luke-jr] has quit [Ping timeout: 260 seconds]     
15:41 -!- lukedashjr is now known as luke-jr     
17:26 <@gmaxwell> https://www.usenix.org/system/files/conference/usenixsecurity18/sec18-alam.pdf
17:42 <@gmaxwell> Our code already more or less implements their mitigation. Though the paper's text and figure seem to disagree with each other.
17:44 <@gmaxwell> Their mitigation focuses on that openssl extracts bits from the exponent one at a time, which makes it easy for them to target single bits. They mitigate by reading a whole window worth at a time... which we already do, but for ecmult_gen, I think our windows are smaller than the openssl ones.
17:44 <@gmaxwell> (their particular "recover the exponent from corrupted data" probably doesn't apply to ECC either)
17:44 <@gmaxwell> this again highlights that I really wish we had a CI solution for power/emi sidechannels though.
17:45 <@gmaxwell> A lot of their paper talks about how they use the constant time computation to synchronize their timing with the recorded signal.
17:46 <@gmaxwell> Avoiding that pure-engineering problem is why previously I'd suggested to td-linux that it would be best if the sampler and device-under-test were clocked from a common oscillator.
17:47 < TD-Linux> yeah I redid my script a while back using a scope rather than the usrp which was easier to debug
17:47 < TD-Linux> but still not clocked together
17:47 < TD-Linux> I should really fab a PCB to make a better preamp and try it again. I'm waiting on another PCB so good time for it :)
17:55 <@gmaxwell> I wonder though if we should be using a SOC without an internal power regulator?  I think part of the reason that your traces were so noisy was the LDO inside the SOC.
19:09 <@gmaxwell> TD-Linux: it occurs to me that there is an advantage of using a downmixer approach,  to whatever extent that some of the noise is low frequency and not related to the clockrate (e.g. LDO noise, bus noises), doing so gets them out of the way.
19:28 -!- Netsplit *.net <-> *.split quits: ensign, instagibbs, Lightsword
19:30 -!- Netsplit over, joins: Lightsword, instagibbs, ensign
19:32 -!- Netsplit *.net <-> *.split quits: jcorgan
19:32 -!- jcorgan_ [~jcorgan@64-142-68-61.dsl.static.sonic.net] has joined #secp256k1     
19:32 -!- andytoshi [~apoelstra@96.53.77.134] has joined #secp256k1     
19:32 -!- Netsplit over, joins: roasbeef
19:33 -!- GAit [~GAit@213.32.22.101] has joined #secp256k1     
19:33 -!- Madars [~null@contents-vnder-pressvre.mit.edu] has joined #secp256k1     
19:34 < TD-Linux> gmaxwell, I mean, I can also just capacitively couple.
19:35 <@gmaxwell> yes, but then we'll potentially lose the signal of interest, if our device clockrate isn't high enough.
19:36 -!- BlueMatt [~BlueMatt@mail.bluematt.me] has joined #secp256k1     
19:37 -!- Madars is now known as Guest77842     
19:37 <@gmaxwell> in any ways, I'm sure anything we do will be better than nothing.
19:38 <@gmaxwell> It would just be nice to have SNR and repeatablity high enough that we can make an automated metric.
19:38 -!- andytoshi [~apoelstra@96.53.77.134] has quit [Changing host]     
19:38 -!- andytoshi [~apoelstra@unaffiliated/andytoshi] has joined #secp256k1     
19:40 -!- BlueMatt [~BlueMatt@mail.bluematt.me] has quit [Quit: ZNC - http://znc.in]     
19:41 -!- GAit is now known as Guest79908     
20:07 -!- Netsplit over, joins: deusexbeer
20:08 -!- Netsplit over, joins: luke-jr, meshcollider
20:43 -!- BlueMatt [~BlueMatt@unaffiliated/bluematt] has joined #secp256k1     
20:48 -!- BlueMatt [~BlueMatt@unaffiliated/bluematt] has quit [Quit: Quit]     
20:50 -!- BlueMatt [~BlueMatt@unaffiliated/bluematt] has joined #secp256k1     
21:07 -!- ken2812221 [~ken281222@110.50.144.85] has quit [Ping timeout: 260 seconds]     
21:40 -!- echonaut9 [~echonaut@46.101.192.134] has quit [Remote host closed the connection]     
21:40 -!- echonaut [~echonaut@46.101.192.134] has joined #secp256k1     
21:50 -!- Guest77922 [~leachim6@116.0.3.226] has joined #secp256k1     
21:56 -!- Guest77922 [~leachim6@116.0.3.226] has quit [Ping timeout: 268 seconds]     
22:18 -!- maaku [~maaku@173.234.25.100] has quit [Quit: ZNC - https://znc.in]     
22:20 -!- maaku [~maaku@173.234.25.100] has joined #secp256k1     
22:40 -!- kallewoof [~quassel@240d:1a:759:6000:a7b1:451a:8874:e1ac] has quit [Ping timeout: 265 seconds]     
22:42 -!- kallewoof [~quassel@240d:1a:759:6000:a7b1:451a:8874:e1ac] has joined #secp256k1     
22:45 -!- dungodung24 [~dungodung@fp96f94c31.tkyc515.ap.nuro.jp] has joined #secp256k1     
22:45 -!- dungodung24 [~dungodung@fp96f94c31.tkyc515.ap.nuro.jp] has quit [Remote host closed the connection]