[Cryptography] Side channel attack on OpenSSL ECDSA on iOS and Android
Perry E. Metzger
perry at piermont.com
Thu Mar 3 20:28:12 EST 2016
On Fri, 4 Mar 2016 01:13:45 +0000 Peter Gutmann
<pgut001 at cs.auckland.ac.nz> wrote:
> Perry E. Metzger <perry at piermont.com> writes:
>
> >For example, as was mentioned in that posting in this thread, the
> >OpenSSL people are indeed releasing code for several platforms
> >that should be more resistant to side channel attacks.
>
> You still really need to address it in hardware to do it properly
> though.
Absolutely. I didn't mean to suggest otherwise. I merely was noting
that the OpenSSL people *are* trying to do their best on this given
the limitations, and the selective quotation of what they said wasn't
fair.
Perry
--
Perry E. Metzger perry at piermont.com
More information about the cryptography
mailing list