[Cryptography] Vulnerability of RSA vs. DLP to single-bit faults
Tom Ritter
tom at ritter.vg
Sat Nov 1 21:23:58 EDT 2014
On 1 November 2014 11:37, Bill Frantz <frantz at pwpconsult.com> wrote:
> Isn't this possibility best handled by ECC and other hardware error
> detection/correction? When you get really paranoid about such failures you
> end up with parity predicting adders, redundant hardware with voting etc.
You can say that, but I think it'd be wrong to dismiss it entirely,
considering the success that Bitsquatting had:
http://dinaburg.org/bitsquatting.html
I don't have any pointers, Peter, but I'm definitely curious to see
what you come up with.
-tom
More information about the cryptography
mailing list