[
www.eurasia.nu] describes a timing attack used to recover keys on the Xbox 360. It would determine how many bytes of a key were correct by measuring how long it took the system to check, which tells you how many iterations memcmp() did before finding a nonmatching byte. Could this be used on Wii as well?
