[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Taler] Fault attacks on RSA in libgcrypt

From: Werner Koch
Subject: Re: [Taler] Fault attacks on RSA in libgcrypt
Date: Wed, 24 Aug 2016 15:25:36 +0200
User-agent: Gnus/5.13 (Gnus v5.13)

On Mon, 22 Aug 2016 19:42, address@hidden said:

> I implemented the protection against fault attacks recommended in
> "Making RSA-PSS Provably Secure Against Non-Random Faults" by Gilles
> Barthe, François Dupressoir, Pierre-Alain Fouque, Benjamin Grégoire,

I do not have the time to read that paper right now.  We recently had a
similar thing with gpgv and dpkg and it was not clear whether we can do
anything about it anyway.

Wouldn't a signature verification after creation catch that fault?



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.
 /* Join us at OpenPGP.conf  <https://openpgp-conf.org> */

reply via email to

[Prev in Thread] Current Thread [Next in Thread]