Cryptography Research Leads Five Speaking Sessions at RSA® Conference 2007

Business Wire, Jan 29, 2007

SAN FRANCISCO -- Cryptography Research, Inc. (CRI) today announced that company executives will lead five presentations throughout the week at the 16th Annual RSA Conference, February 5-9, at the Moscone Center in San Francisco.

CRI will lead a pre-conference one-day tutorial entitled "Securing Devices from Side-Channel Attacks: An Introduction to Timing Attacks, Simple Power Analysis (SPA) and Differential Power Analysis (DPA)." This workshop will examine timing attacks, simple power analysis and differential power analysis as security threats to smart cards and other tamper resistant devices. Details about this tutorial can be found in a separate press release issued by CRI today (see "Cryptography Research to Lead Workshop on Differential Power Analysis Attacks and Countermeasures at RSA Conference 2007").

Paul Kocher, president and chief-scientist at CRI will present "Failing Gracefully." In this session, Kocher will describe design and engineering strategies for security systems where adequate defensive mechanisms are impractical or cannot ensure the absence of weaknesses. In the talk, he will explore the use of multiple security perimeters inside products, secure update capabilities and internal consistency checking methods to prevent operation in partially-exposed states.

Vice President of Technology Benjamin Jun will hold a session on "Security Remodeling: 10 Ways to Retrofit Transactional Systems." The session will outline ten cost-effective security improvements that can be made in conjunction with other operational changes. Jun will teach practical methods for auditing application designs, protecting databases and improving transaction management.

Researcher Nate Lawson will discuss the quiet war that has raged between copy protection authors and crackers since the 1980s in his session entitled "The Copy Protection Wars: Analyzing Retro and Modern Schemes (C64 to Xbox)." Lawson will introduce the fundamental concept of asymmetry and show how schemes from Vorpal to SafeDisc achieve it and will also demonstrate attack strategies using an emulator and original Commodore drive.

Security Engineer Trevor Perrin will serve as the moderator on the panel entitled "Wireless Security: Built to Last." This panel will discuss new threats to mobile security and examine wireless security strategies built to stand the test of time.

CRI Presentations at RSA:

[TABLE OMITTED]

For more information about these events, please visit the RSA Web site: https://cm.rsaconference.com/US07/catalog/eventguide/ publicScheduleByType.jsp (Due to its length, this URL may need to be copied/pasted into your Internet browser's address field. Remove the extra space if one exists.)

About Paul Kocher, President and Chief Scientist

Paul Kocher is president and chief scientist of Cryptography Research, where he leads a research team that specializes in applying results from cryptography and computer science to solve real world security problems. His technical work includes co-authoring SSL v3.0, designing the DES Key Search machine Deep Crack and discovering Differential Power Analysis.

About Benjamin Jun, Vice President of Technology

Benjamin Jun oversees the services and technology groups at Cryptography Research. He has developed numerous widely deployed systems for the protection of financial transactions, consumer digital content and pay television.

About Nate Lawson, Researcher

Nate Lawson's expertise is in network, platform and cryptographic security. He is the original developer of ISS's RealSecure technology and also contributes to the open-source FreeBSD (ACPI/power management, SCSI) and C64 Preservation projects.

About Ken Warren, Smart Card Business Manager

Ken Warren represents Cryptography Research in its activities in the smart card industry, including support of CRI's DPA countermeasures licensing and validation programs. With over 12 years of smart card industry experience, Warren has held a variety of roles including responsibility for IC security at NatWest Bank and Mondex International, and most recently as Group Marketing Manager at Renesas Technology.

About Josh Jaffe, Research Scientist

Josh Jaffe is the top Differential Power Analysis (DPA) analyst at Cryptography Research. A co-author of the 1999 paper presenting DPA, Jaffe's recent research has focused on physical and mathematical security analysis of smart cards and other semiconductors, including contactless devices and tokens.

About Trevor Perrin, Security Engineer

Trevor Perrin is a security engineer at Cryptography Research. With a background in software engineering and applied cryptography, his recent work has focused on key management, side-channel attacks and content protection.

About Cryptography Research, Inc.

Cryptography Research, Inc. provides technology to solve complex security problems. In addition to security evaluation and applied engineering work, the company is actively involved in long-term research and technology licensing in areas including content protection, tamper resistance, network security and financial services. Security systems designed by Cryptography Research engineers protect more than $100 billion of commerce annually for wireless, telecommunications, financial, digital television and Internet industries. For additional information please visit www.cryptography.com.