Why the exponent 3 error happened:
James A. Donald
jamesd at echeque.com
Mon Sep 18 23:07:46 EDT 2006
--
imon Josefsson wrote:
> Again, there is no problem in ASN.1 or PKCS#1 that is
> being exploited here, only an implementation flaw,
> even if it is an interesting one.
But why did several people independently implement the
same or similar flaws?
The answer is in Jack Lloyd's post:
> I wrote a decoder for PKCS#1 v1.5, realized it
> probably had bugs I wouldn't figure out until too
> late, [...] my PSS verification code is probably
> around twice the length of the PSS generation code,
> due to the need to check every stupid little thing.
--digsig
James A. Donald
6YeGpsZR+nOTh/cGwvITnSR3TdzclVpR0+pr3YYQdkG
kcayKvWlPFXTPP9oNsxdS/f7Cu706I0sQMBSZJUj
4578L9TLcVLPN7c++p1/Un4LFV6ugOy6Pb/SpWw2u
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list