[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[lsd0001] branch master updated: another case where I think SHOULD is en
|
From: |
gnunet |
|
Subject: |
[lsd0001] branch master updated: another case where I think SHOULD is enough |
|
Date: |
Tue, 01 Feb 2022 20:33:02 +0100 |
This is an automated email from the git hooks/post-receive script.
grothoff pushed a commit to branch master
in repository lsd0001.
The following commit(s) were added to refs/heads/master by this push:
new 8c58a3a another case where I think SHOULD is enough
8c58a3a is described below
commit 8c58a3a83d30508e5093966ec72603dd0f7d6275
Author: Christian Grothoff <christian@grothoff.org>
AuthorDate: Tue Feb 1 20:33:00 2022 +0100
another case where I think SHOULD is enough
---
draft-schanzen-gns.xml | 9 ++++++---
1 file changed, 6 insertions(+), 3 deletions(-)
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml
index acc5b55..36c6999 100644
--- a/draft-schanzen-gns.xml
+++ b/draft-schanzen-gns.xml
@@ -1168,9 +1168,12 @@ h[31] &= 7 // Implies h mod L == h
zk' := h * zk
]]></artwork>
<t>
- We note that implementers must employ a constant time scalar
- multiplication for the constructions above. Also, implementers
- must ensure that the private key a is an ed25519 private key
+ We note that implementers SHOULD employ a constant time scalar
+ multiplication for the constructions above to protect against
+ timing attacks. Otherwise, timing attacks may leak private key
+ material if an attacker can predict when a system starts the
+ publication process. Also, implementers
+ MUST ensure that the private key a is an ed25519 private key
and specifically that "a[0] & 7 == 0" holds.
</t>
<t>
--
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [lsd0001] branch master updated: another case where I think SHOULD is enough,
gnunet <=