Padding oracle attacks are a class of relatively misunderstood attacks. Whilst they are generally well understood on the theoretical side, there practical impact is generally less clear. The talk will take a tour of padding oracle attacks, from discovery to remediation through exploitation.
It will focus mostly on the Bleichenbacher attack on PKCS1 padding, but will take a detour through the better understood PKCS7 attack on CBC mode if time permits.
I will present a tool I have written to exploit Bleichenbacher type attacks.