ROCA is a vulnerability hitting millions of devices. How can you tell if yours are affected – and what can you do if they are? The vulnerability lies in a software library that generates the key pairs for RSA encryption. Infineon, a German chip manufacturer, used a vulnerable version of the RSA algorithm in chips that were installed in millions of smart cards, security tokens and other devices sold by Microsoft, Google, HP, Lenovo, Fujitsu and others. The more complex the key, the less likely an attack is to be successful.”]
Source: https://www.darkreading.com/abtv/how-can-you-beat-the-widespread-roca/a/d-id/737462