fyi: Adi Shamir's microprocessor bug attack

James Muir jamuir at
Mon Nov 19 15:27:29 EST 2007

' =JeffH ' wrote:
> From: John Young <cryptome at>
> Subject: Adi Shamir's microprocessor bug attack
> To: ukcrypto at
> Date: Sat, 17 Nov 2007 09:50:31 -0500 (GMT-05:00)
> Adi Shamir's note on a microprocessor bug attack on public key cryptography 
> featured in the NY Times today:
> The NYT report:

Can anyone think of a deployed implementation of RSA signatures that 
would be vulnerable to the attack Shamir mentions?  Hashing and message 
blinding would seem to thwart it.

Incidentally, in the 2001 Boneh-DeMillo-Lipton paper they do mention the 
Intel floating point division bug.


The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at

More information about the cryptography mailing list