In our newest USENIX paper, @XoIMEX, Simon Nachtigall, Marcel Maehren, Nurullah Erinola, @ic0nz1, Jörg Schwenk, and me took a look at the TLS session ticket deployment in the wild and found diverse vulnerabilities: upb-syssec.github.io/blog/2023/sess… (1/12)

[1/4] If you've ever tried finding timing side channels by actually measuring, you probably know that this can be incredibly frustrating. But it does not have to! While major side-channels are easy to detect, more subtle ones, especially when the measurements are noisy, are not!

Now Martin Dunsche presents our recent work on timing side channels at USENIX Security. 📝 usenix.org/system/files/u… 🛠️ github.com/tls-attacker/R… #usesec24