diff options
| author | jaseg <git@jaseg.de> | 2021-07-13 16:53:29 +0200 |
|---|---|---|
| committer | jaseg <git@jaseg.de> | 2021-07-13 16:53:29 +0200 |
| commit | 692015daf0ccc1fe795271cfb13f7fdc12307190 (patch) | |
| tree | 6346807e8ec1cb99d30370d45ebb66a1a56fd117 | |
| parent | a6e14085046c7cf24f8ed27673a9c365d1565bf1 (diff) | |
| download | ihsm-692015daf0ccc1fe795271cfb13f7fdc12307190.tar.gz ihsm-692015daf0ccc1fe795271cfb13f7fdc12307190.tar.bz2 ihsm-692015daf0ccc1fe795271cfb13f7fdc12307190.zip | |
Add dots to cover letter headings
| -rw-r--r-- | paper/tches-22-01-changes.tex | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/paper/tches-22-01-changes.tex b/paper/tches-22-01-changes.tex index f9fc758..234c12f 100644 --- a/paper/tches-22-01-changes.tex +++ b/paper/tches-22-01-changes.tex @@ -46,7 +46,7 @@ This document lists the requested revisions we identified from the reviewers comments and explains how we adressed these requests. -\paragraph{Lack of discussion of operational constraints} +\paragraph{Lack of discussion of operational constraints.} As pointed out by Reviewer~B, our initial submission lacked a detailed discussion of the operational constraints of Inertial Hardware Security Modules. We have adressed this with more than two pages of new content on the operation of @@ -55,7 +55,7 @@ reviewers' points on the continuous power supply requirement and go into detail alarms triggered by external vibrations. Section~3.5 also addressses Reviewer~B's comments on failover, backup and replication of cryptographic secrets. -\paragraph{Lack of discussion of improved cooling capabilities of IHSMs compared to traditional HSMs} +\paragraph{Lack of discussion of improved cooling capabilities of IHSMs compared to traditional HSMs.} As Reviewer~D pointed out, our initial submission alluded to the possibility of facilitating cooling airflow through an IHSM's security mesh and noted that this would allow for greater processing capabilities, but did not go into detail on @@ -63,7 +63,7 @@ the extent of this effect. In our revised paper, we have extended Section~3.4 `` order-of-magnitude estimation of this effect based on real-world benchmarks and information available from vendors of traditional HSMs. -\paragraph{Mechanical Rotating Stage Attacks} +\paragraph{Mechanical Rotating Stage Attacks.} As pointed out by Reviewer~D, in our original submission our discussion of the Swivel Chair Attack discusses attacks by by a rotating human attacker in depth and mentions the possibility of a fully mechanized attack robot. However, our @@ -71,7 +71,7 @@ initial submission did not go into detail on the constraints of such a fully mec have completed our discussion in this section with one half page of new content and one new diagram discussing fully mechanized attack robots. -\paragraph{Comparison of IHSM attacks to those on traditional HSMs} +\paragraph{Comparison of IHSM attacks to those on traditional HSMs.} In addition to the previous point, Reviewer~D pointed out that the discussion of attacks on IHSMs in our initial submission would have benefited from a more thorough contextualization of the attacks possible on traditional HSMs. In @@ -79,18 +79,18 @@ response, we have significantly extended Section~4 ``Attacks'' with one page of ``Attacks that don't work'' and~4.3 ``Attacks that work on any HSM'' that provide this missing context to guide the reader. -\paragraph{Notes on future work} +\paragraph{Notes on future work.} Reviewer~D stated that they would find an outlook on the next design steps towards a practically usable design interesting. We have adressed this at the end of Section~7 ``Conclusion'' to the extent of our current plans. -\paragraph{Design Artifact Availability} +\paragraph{Design Artifact Availability.} Reviewer~D state that acceess to design artifacts would be useful for readers of the paper. While we cannot make our design artifacts available as part of the peer review process as they contain a multitude of references to the identities of the authors and their employer, we have added a brief appendix that in the publication version of our paper will contain a link to the open-source repository containing all hardware, software and paper sources relating to our research project. -\paragraph{Detailed discussion of contactless attacks} +\paragraph{Detailed discussion of contactless attacks.} Reviewer~C noted that like a traditional HSM an IHSM cannot prevent contactless attacks such as electromagnetic sidechannel attacks or laser fault injection. While our initial submission acknowledged this property of our design, our @@ -99,7 +99,7 @@ Section~4.2 ``Attacks that work on any HSM'' that provides more detail on contac observe that the IHSM design allows for some mitigations against contactless attacks due to the physically larger space it can provide to its payload. -\paragraph{Justification of mesh monitor power consumption estimates} +\paragraph{Justification of mesh monitor power consumption estimates.} A point noted by Reviewer~B is that in our initial submission we provided an estimate on the current consumption of an IHSM monitoring cirucit without providing a detailed justification of our estimate. In response, we have extended |