===== Side-Channel Attack =====
[[dido:public:ra:xapend:xapend.a_glossary:start| Return to Glossary ]]

**Side-Channel Attack** is any attack based on information gained from the implementation of a computer system, rather than weaknesses in the implemented algorithm itself (e.g. cryptanalysis and software bugs). Timing information, power consumption, electromagnetic leaks or even sound can provide an extra source of information, which can be exploited.

Some side-channel attacks require technical knowledge of the internal operation of the system, although others such as differential power analysis are effective as black-box attacks. The rise of Web 2.0 applications and [[dido:public:ra:xapend:xapend.a_glossary:s:saas]] has also significantly raised the possibility of Side-Channel Attack on the web, even when transmissions between a web browser and server are encrypted (e.g. through [[dido:public:ra:xapend:xapend.a_glossary:h:https]] or [[dido:public:ra:xapend:xapend.a_glossary:w:wifi]] [[dido:public:ra:xapend:xapend.a_glossary:e:encryption]]).

Source: [[https://en.wikipedia.org/wiki/Side-channel_attack ]]


/**=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
/* To add a discussion page to this page, comment out the line that says 
  ~~DISCUSSION:off~~
*/
~~DISCUSSION:on|Outstanding Issues~~
~~DISCUSSION:off~~