[FFmpeg-devel] [PATCH] ALSA for libavdevice

Reimar Döffinger Reimar.Doeffinger
Mon Dec 15 14:52:03 CET 2008

On Mon, Dec 15, 2008 at 02:34:04PM +0100, Nicolas George wrote:
> I do not see how it would be a security issue: a lot of things expose the
> system time (the HTTP date header, IP timestamps) or the
> creation/modification time of a file (headers in an archive). This is hardly
> a confidential information.

I don't think someone who publishes a file they privately recorded expects that
they will also tell everyone to the millisecond precisely _when_ they
recorded it (is this actually the case? I'd think the timestamps would
have to start at 0).
IP timestamps AFAICT are optional, and in addition only precise to the
millisecond. As I understood it, these timestamps will possibly be precise to the
microsecond, which makes sidechannel attacks not completely implausible.

More information about the ffmpeg-devel mailing list