OpenSSL BIGNUM vs. GMP
Ben Laurie
ben at algroup.co.uk
Sat Dec 31 06:04:31 EST 2005
It appears that one reason GMP may sometimes be faster than OpenSSL for
RSA is that it seems that GMP does not do blinding or constant time
arithmetic, both of which are needed to defend against known attacks.
So, if you are going to use GMP for speed, be aware that you may be
risking your private keys.
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html http://www.thebunker.net/
"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list