[Cryptography] What faults would you inject to test crypto mechanisms/protocols?
Philipp Gühring
pg at futureware.at
Tue May 13 12:17:59 EDT 2014
Hi,
Some more:
* Bad random numbers (see if they are being detected by the systems using
them)
* Duplicate fields/paramters/extensions (What happens when a
field/parameter/extension that is supposed to be there only once actually
occurs more times?)
* Duplicate messages (for crypto protocols)
* Injecting faults into memory allocation (malloc)
Best regards,
Philipp
More information about the cryptography
mailing list