Consider a smartcard that stores a private RSA key. Since the card is tamper resistant, an attacker
Marvin may not be able to examine its contents and expose the key. However, a clever attack due
to Kocher shows that by precisely measuring the time it takes the smartcard to perform an
RSA decryption (or signature), Marvin can quickly discover the private decryption exponent