Open Access

S/MIME and OpenPGP use cryptographic constructions repeatedly shown to be vulnerable to format oracle attacks in protocols like TLS, SSH, or IKE. However, format oracle attacks in the End-to-End Encryption (E2EE) email setting are considered impractical as victims would need to open many attacker-modified emails and communicate the decryption result to the attacker. But is this really the case? In this paper, we survey how an attacker may remotely learn the decryption state in email E2EE. We analyze the interplay of MIME and IMAP and describe side-channels emerging from network patterns that leak the decryption status in Mail User Agents (MUAs). Concretely, we introduce specific MIME trees that produce decryption-dependent network patterns when opened in a victim’s email client. We survey 19 OpenPGP- and S/MIME-enabled email clients and four cryptographic libraries and uncover a side-channel leaking the decryption status of S/MIME messages in one client. Further, we discuss why the exploitation in the other clients is impractical and show that it is due to missing feature support and implementation quirks. These unintended defenses create an unfortunate conflict between usability and security. We present more rigid countermeasures for MUA developers and the standards to prevent exploitation.

Long coherence times at room temperature make the NV center a promising candidate for quantum sensors and quantum computers. The necessary coherent control of the electron spin triplet in the ground state requires microwave 𝜋 pulses in the nanosecond range, obtained from the Rabi oscillation of the mS spin states of the magnetic resonances of the NV centers. Laboratory equipment has a high temporal resolution for these measurements but is expensive and, therefore, uninteresting for fields such as education. In this work, we present measurement electronics for NV centers that are optimized for microcontrollers. It is shown that the Rabi frequency is linear to the output of the digital-to-analog converter (DAC) and is used to adapt the time length 𝜋 of the electron spin flip, to the limited pulse width resolution of the microcontroller. This was achieved by breaking down the most relevant functions of conventional laboratory devices and replacing them with commercially available integrated components. The result is a cost-effective handheld setup for coherent control applications of NV centers. Keywords: NV center in diamond; quantum sensing; microcontroller; Rabi oscillation; ODMR; handheld; π pulse

Quantum magnetometry based on optically detected magnetic resonance (ODMR) of nitrogen vacancy centers in diamond nano or microcrystals is a promising technology for sensitive, integrated magnetic-field sensors. Currently, this technology is still cost-intensive and mainly found in research. Here we propose one of the smallest fully integrated quantum sensors to date based on nitrogen vacancy (NV) centers in diamond microcrystals. It is an extremely cost-effective device that integrates a pump light source, photodiode, microwave antenna, filtering and fluorescence detection. Thus, the sensor offers an all-electric interface without the need to adjust or connect optical components. A sensitivity of 28.32nT/Hz−−−√ and a theoretical shot noise limited sensitivity of 2.87 nT/Hz−−−√ is reached. Since only generally available parts were used, the sensor can be easily produced in a small series. The form factor of (6.9 × 3.9 × 15.9) mm3 combined with the integration level is the smallest fully integrated NV-based sensor proposed so far. With a power consumption of around 0.1W, this sensor becomes interesting for a wide range of stationary and handheld systems. This development paves the way for the wide usage of quantum magnetometers in non-laboratory environments and technical applications.