[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Taler] Fault attacks on RSA in libgcrypt

From: Jeff Burdges
Subject: Re: [Taler] Fault attacks on RSA in libgcrypt
Date: Wed, 24 Aug 2016 13:46:06 +0200

I found an article which provides the same sort of fault protections
with a randomized CRT algorithm.  I'd expect it gives stronger
protections against timing attacks, etc., even if fault attacks prove
not to be realistic. 

This is probably more the sort of thing one should be doing.  It appears
the random numbers injected should be quite small, making this scheme
fairly fast.  This particular paper however only really focuses on fault

It would be good to see this or similar schemes evaluated for timing
attack protections though, as folks understandably care way more about
timing than about fault attacks. 


Attachment: signature.asc
Description: This is a digitally signed message part

reply via email to

[Prev in Thread] Current Thread [Next in Thread]