Cryptography Research Leads Five Speaking Sessions at RSA® Conference 2007

SAN FRANCISCO, California — (RSA Conference) – January 29, 2007 — Cryptography Research, Inc. (CRI) today announced that company executives will lead five presentations throughout the week at the 16th Annual RSA Conference, February 5-9, at the Moscone Center in San Francisco.

CRI will lead a pre-conference one-day tutorial entitled “Securing Devices from Side-Channel Attacks: An Introduction to Timing Attacks, Simple Power Analysis (SPA) and Differential Power Analysis (DPA).” This workshop will examine timing attacks, simple power analysis and differential power analysis as security threats to smart cards and other tamper resistant devices. Details about this tutorial can be found in a separate press release issued by CRI today (see "Cryptography Research to Lead Workshop on Differential Power Analysis Attacks and Countermeasures at RSA Conference 2007").

Paul Kocher, president and chief-scientist at CRI will present “Failing Gracefully.” In this session, Kocher will describe design and engineering strategies for security systems where adequate defensive mechanisms are impractical or cannot ensure the absence of weaknesses. In the talk, he will explore the use of multiple security perimeters inside products, secure update capabilities and internal consistency checking methods to prevent operation in partially-exposed states.

Vice President of Technology Benjamin Jun will hold a session on “Security Remodeling: 10 Ways to Retrofit Transactional Systems.” The session will outline ten cost-effective security improvements that can be made in conjunction with other operational changes. Jun will teach practical methods for auditing application designs, protecting databases and improving transaction management.

Researcher Nate Lawson will discuss the quiet war that has raged between copy protection authors and crackers since the 1980s in his session entitled “The Copy Protection Wars: Analyzing Retro and Modern Schemes (C64 to Xbox).” Lawson will introduce the fundamental concept of asymmetry and show how schemes from Vorpal to SafeDisc achieve it and will also demonstrate attack strategies using an emulator and original Commodore drive.

Security Engineer Trevor Perrin will serve as the moderator on the panel entitled “Wireless Security: Built to Last.” This panel will discuss new threats to mobile security and examine wireless security strategies built to stand the test of time.

CRI Presentations at RSA:

Who: Benjamin Jun, vice president of technology
Ken Warren, smart card business manager
Josh Jaffe, research scientist
Trevor Perrin, security engineer
What: “Securing Devices from Side-Channel Attacks: An Introduction to Timing Attacks, SPA, and DPA”
When: Monday, February 5, 2007, at 9:00 a.m.
Where: Moscone Center, San Francisco - Burgundy Room 131
Requires advance registration

Who: Paul Kocher, president and chief scientist
What: “Wireless Security: Built to Last”
When: Tuesday, February 6, 2007, at 1:30 p.m.
Where: Moscone Center, San Francisco - Gold Room 308

Who: Nate Lawson, researcher
What: “The Copy Protection Wars: Analyzing Retro and Modern Schemes (C64 to Xbox)”
When: Tuesday, February 6, 2007, at 3:00 p.m.
Where: Moscone Center, San Francisco - Green Room 104

Who: Paul Kocher, president and chief scientist
What: “Failing Gracefully”br> When: Tuesday, February 6, 2007, at 5:40 p.m
Where: Moscone Center, San Francisco - Green Room 103

Who: Benjamin Jun, vice president of technology
What: “Security Remodeling: 10 Ways to Retrofit Transactional Systems”br> When: Wednesday, February 7, 2007, at 8 a.m.
Where: Moscone Center, San Francisco - Gold Room 309

For more information about these events, please visit the RSA website.

About Paul Kocher, President and Chief Scientist
Paul Kocher is president and chief scientist of Cryptography Research, where he leads a research team that specializes in applying results from cryptography and computer science to solve real world security problems. His technical work includes co-authoring SSL v3.0, designing the DES Key Search machine Deep Crack and discovering Differential Power Analysis.

About Benjamin Jun, Vice President of Technology
Benjamin Jun oversees the services and technology groups at Cryptography Research. He has developed numerous widely deployed systems for the protection of financial transactions, consumer digital content and pay television.

About Nate Lawson, Researcher
Nate Lawson’s expertise is in network, platform and cryptographic security. He is the original developer of ISS's RealSecure technology and also contributes to the open-source FreeBSD (ACPI/power management, SCSI) and C64 Preservation projects.

About Ken Warren, Smart Card Business Manager
Ken Warren represents Cryptography Research in its activities in the smart card industry, including support of CRI’s DPA countermeasures licensing and validation programs. With over 12 years of smart card industry experience, Warren has held a variety of roles including responsibility for IC security at NatWest Bank and Mondex International, and most recently as Group Marketing Manager at Renesas Technology.

About Josh Jaffe, Research Scientist
Josh Jaffe is the top Differential Power Analysis (DPA) analyst at Cryptography Research. A co-author of the 1999 paper presenting DPA, Jaffe's recent research has focused on physical and mathematical security analysis of smart cards and other semiconductors, including contactless devices and tokens.

About Trevor Perrin, Security Engineer
Trevor Perrin is a security engineer at Cryptography Research. With a background in software engineering and applied cryptography, his recent work has focused on key management, side-channel attacks and content protection.