Originally posted by sonhouse
Now what, sports fans?
They are not actually breaking the encryption itself. They have created a
novel method for extracting the key from the target machine without
necessarily infecting that machine with a trojan or hacking into it.
Which is obviously a security threat... But it's not a failing of the encryption
system itself. It's always been possible to break encryption by hacking the
machine with the keys on it. What this does is make THAT easier.
It doesn't make it any easier to decode the message on route.
I would suspect from the description that a one time pad encryption system
would be invulnerable to this attack as the cypher changes with every bit.
So as long (as ever) the key has a high enough degree of randomness and
is kept safe this attack would fail.
Of course that gets you back to wondering how you safely transport the key...
Quantum encryption isn't ready yet.