[Cryptography] Vulnerability of RSA vs. DLP to single-bit faults

Tom Ritter tom at ritter.vg
Sat Nov 1 21:23:58 EDT 2014

On 1 November 2014 11:37, Bill Frantz <frantz at pwpconsult.com> wrote:
> Isn't this possibility best handled by ECC and other hardware error
> detection/correction? When you get really paranoid about such failures you
> end up with parity predicting adders, redundant hardware with voting etc.

You can say that, but I think it'd be wrong to dismiss it entirely,
considering the success that Bitsquatting had:

I don't have any pointers, Peter, but I'm definitely curious to see
what you come up with.


More information about the cryptography mailing list