Simon Willison's Weblog: sidechannelhttp://simonwillison.net/2018-06-01T14:54:30+00:00Simon WillisonSide-channel attacking browsers through CSS3 features2018-06-01T14:54:30+00:002018-06-01T14:54:30+00:00https://simonwillison.net/2018/Jun/1/side-channel-css3/#atom-tag
<p><strong><a href="https://www.evonide.com/side-channel-attacking-browsers-through-css3-features/">Side-channel attacking browsers through CSS3 features</a></strong></p>
Really clever attack. Sites like Facebook offer iframe widgets which show the user’s name, but due to the cross-origin resource policy cannot be introspected by the site on which they are embedded. By using CSS3 blend modes it’s possible to construct a timing attack where a stack of divs layered over the top of the iframe can be used to derive the embedded content, by taking advantage of blend modes that take different amounts of time depending on the colour of the underlying pixel. Patched in Firefox 60 and Chrome 63.
<p>Tags: <a href="https://simonwillison.net/tags/css3">css3</a>, <a href="https://simonwillison.net/tags/security">security</a>, <a href="https://simonwillison.net/tags/sidechannel">sidechannel</a>, <a href="https://simonwillison.net/tags/timing-attack">timing-attack</a></p>
Side-Channel Leaks in Web Applications2010-03-23T16:24:02+00:002010-03-23T16:24:02+00:00https://simonwillison.net/2010/Mar/23/sidechannel/#atom-tag
<p><strong><a href="http://www.freedom-to-tinker.com/blog/felten/side-channel-leaks-web-applications">Side-Channel Leaks in Web Applications</a></strong></p>
Interesting new security research. SSL web connections encrypt the content but an attacker can still see the size of the HTTP requests going back and forward—which can be enough to extract significant pieces of information, especially in applications that make a lot of Ajax requests.
<p>Tags: <a href="https://simonwillison.net/tags/ajax">ajax</a>, <a href="https://simonwillison.net/tags/http">http</a>, <a href="https://simonwillison.net/tags/security">security</a>, <a href="https://simonwillison.net/tags/sidechannel">sidechannel</a>, <a href="https://simonwillison.net/tags/ssl">ssl</a></p>
Side-Channel Attacks and Security Theatre2007-08-02T12:30:03+00:002007-08-02T12:30:03+00:00https://simonwillison.net/2007/Aug/2/links/#atom-tag
<p><strong><a href="http://www.links.org/?p=245">Side-Channel Attacks and Security Theatre</a></strong></p>
“In order to mount most of these attacks the attacker must be local [...] every good security person knows that if your attacker has the ability to run stuff on your machine, it is game over, so why are we even caring about these attacks?”
<p>Tags: <a href="https://simonwillison.net/tags/ben-laurie">ben-laurie</a>, <a href="https://simonwillison.net/tags/openssl">openssl</a>, <a href="https://simonwillison.net/tags/security">security</a>, <a href="https://simonwillison.net/tags/securitytheatre">securitytheatre</a>, <a href="https://simonwillison.net/tags/sidechannel">sidechannel</a></p>