Practical Realisation and Elimination of an ECC-Related Software Bug Attack
The authors analyze and exploit implementation features in OpenSSL version 0:9:8g which permit an attack against ECDH-based functionality. The attack, although more general, can recover the entire (static) private key from an associated SSL server via 633 adaptive queries when the NIST curve P-256 is used. One can view it as a software-oriented analogue of the bug attack concept due to Biham et al. and, consequently, as the first bug attack to be successfully applied against a real-world system.