summaryrefslogtreecommitdiff
path: root/paper
diff options
context:
space:
mode:
Diffstat (limited to 'paper')
-rw-r--r--paper/tches-22-01-changes.tex16
1 files changed, 8 insertions, 8 deletions
diff --git a/paper/tches-22-01-changes.tex b/paper/tches-22-01-changes.tex
index f9fc758..234c12f 100644
--- a/paper/tches-22-01-changes.tex
+++ b/paper/tches-22-01-changes.tex
@@ -46,7 +46,7 @@
This document lists the requested revisions we identified from the reviewers comments and explains how we adressed these
requests.
-\paragraph{Lack of discussion of operational constraints}
+\paragraph{Lack of discussion of operational constraints.}
As pointed out by Reviewer~B, our initial submission lacked a detailed discussion of the operational constraints of
Inertial Hardware Security Modules. We have adressed this with more than two pages of new content on the operation of
@@ -55,7 +55,7 @@ reviewers' points on the continuous power supply requirement and go into detail
alarms triggered by external vibrations. Section~3.5 also addressses Reviewer~B's comments on failover, backup and
replication of cryptographic secrets.
-\paragraph{Lack of discussion of improved cooling capabilities of IHSMs compared to traditional HSMs}
+\paragraph{Lack of discussion of improved cooling capabilities of IHSMs compared to traditional HSMs.}
As Reviewer~D pointed out, our initial submission alluded to the possibility of facilitating cooling airflow through an
IHSM's security mesh and noted that this would allow for greater processing capabilities, but did not go into detail on
@@ -63,7 +63,7 @@ the extent of this effect. In our revised paper, we have extended Section~3.4 ``
order-of-magnitude estimation of this effect based on real-world benchmarks and information available from vendors of
traditional HSMs.
-\paragraph{Mechanical Rotating Stage Attacks}
+\paragraph{Mechanical Rotating Stage Attacks.}
As pointed out by Reviewer~D, in our original submission our discussion of the Swivel Chair Attack discusses attacks by
by a rotating human attacker in depth and mentions the possibility of a fully mechanized attack robot. However, our
@@ -71,7 +71,7 @@ initial submission did not go into detail on the constraints of such a fully mec
have completed our discussion in this section with one half page of new content and one new diagram discussing
fully mechanized attack robots.
-\paragraph{Comparison of IHSM attacks to those on traditional HSMs}
+\paragraph{Comparison of IHSM attacks to those on traditional HSMs.}
In addition to the previous point, Reviewer~D pointed out that the discussion of attacks on IHSMs in our initial
submission would have benefited from a more thorough contextualization of the attacks possible on traditional HSMs. In
@@ -79,18 +79,18 @@ response, we have significantly extended Section~4 ``Attacks'' with one page of
``Attacks that don't work'' and~4.3 ``Attacks that work on any HSM'' that provide this missing context to guide the
reader.
-\paragraph{Notes on future work}
+\paragraph{Notes on future work.}
Reviewer~D stated that they would find an outlook on the next design steps towards a practically usable design
interesting. We have adressed this at the end of Section~7 ``Conclusion'' to the extent of our current plans.
-\paragraph{Design Artifact Availability}
+\paragraph{Design Artifact Availability.}
Reviewer~D state that acceess to design artifacts would be useful for readers of the paper. While we cannot make our
design artifacts available as part of the peer review process as they contain a multitude of references to the
identities of the authors and their employer, we have added a brief appendix that in the publication version of our
paper will contain a link to the open-source repository containing all hardware, software and paper sources relating to
our research project.
-\paragraph{Detailed discussion of contactless attacks}
+\paragraph{Detailed discussion of contactless attacks.}
Reviewer~C noted that like a traditional HSM an IHSM cannot prevent contactless attacks such as electromagnetic
sidechannel attacks or laser fault injection. While our initial submission acknowledged this property of our design, our
@@ -99,7 +99,7 @@ Section~4.2 ``Attacks that work on any HSM'' that provides more detail on contac
observe that the IHSM design allows for some mitigations against contactless attacks due to the physically larger space
it can provide to its payload.
-\paragraph{Justification of mesh monitor power consumption estimates}
+\paragraph{Justification of mesh monitor power consumption estimates.}
A point noted by Reviewer~B is that in our initial submission we provided an estimate on the current consumption of an
IHSM monitoring cirucit without providing a detailed justification of our estimate. In response, we have extended