[Cryptography] Response to weak RNGs in Taiwanese and Estonian digital ID cards?
beldmit at gmail.com
Tue Oct 24 13:38:10 EDT 2017
On Tue, Oct 24, 2017 at 5:41 PM, Ondrej Mikle <ondrej.mikle at gmail.com>
> there was similar case with Taiwanese cards in 2013 (batch GCD+Coppersmith
> - https://smartfacts.cr.yp.to/smartfacts-20130916.pdf). However I can't
> seem to find how they handled it eventually. There was recent news that
> they will replace the ID cards for some unspecified reason -
> Same goes for Estonian cards - no idea what mitigation or response was
> announced. It also seems that the news broke for Estonian cards one month
> sooner than for Slovak eID cards (source, but in Slovak:
> Slovakia finally announced shutting down all e-government services and
> that's it for now. Not sure whether they plan on reissuing/repgramming the
AFAIK the problem is not with bad RNGs. At least for Slovakia and Estonia.
Estonia has already anounced that new cards are testing.
SY, Dmitry Belyavsky
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the cryptography