Protecting Cryptographic Libraries against Side-Channel and Code-Reuse Attacks
For developers and users of cryptographic libraries, this work highlights security gaps and suggests mitigations, but it is an incremental analysis without novel results.
This paper examines popular cryptographic libraries for vulnerabilities to side-channel and memory-corruption attacks, identifies security weaknesses, and proposes improvements to their development process.
Cryptographic libraries, an essential part of cybersecurity, are shown to be susceptible to different types of attacks, including side-channel and memory-corruption attacks. In this article, we examine popular cryptographic libraries in terms of the security measures they implement, pinpoint security vulnerabilities, and suggest security improvements in their development process.