Some notes the Debian OpenSSL PRNG bug and DHE
Eric Rescorla
ekr at networkresonance.com
Thu Aug 21 23:01:22 EDT 2008
Some colleagues (Hovav Shacham, Brandon Enright, Scott Yikel, and
Stefan Savage) and I have been doing some followup work on the Debian
OpenSSL PRNG bug. Perry suggested that some cryptography readers
might be interested in our preliminary analysis of the DHE angle,
which can be found here:
http://www.educatedguesswork.org/2008/08/the_debian_openssl_prng_bug_an.html
Also, Hovav gave a WIP on this topic at USENIX Security. The slides are at:
http://cs.ucsd.edu/~hovav/dist/debianwip.pdf
-Ekr
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list