[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Be careful with that axe, Eugene

To: ietf-openpgp@xxxxxxx
Subject: Re: Be careful with that axe, Eugene
From: aboietf@xxxxxxxxxxxxxxx
Date: Wed, 17 Mar 2004 12:28:55 +0100
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx


At 9:11 AM -0800 3/16/04, Jon Callas wrote:
 >I put in this note in -11 in security considerations about PKCS1
 >padding:
 >
 > * PKCS1 has been found to be vulnerable to attacks in which a
 >   system reports that errors in padding differently from errors in
 >   decryption becomes a random oracle that can leak the private key
 >   in mere millions of queries. [...]

I assume that the 2 words "reports that" in the 2nd line should
be switched ("that reports"), otherwise the text does not make
sense to me.

- Wolfgang Redtenbacher

Prev by Date: Re: Packets sequences
Next by Date: Re: Let's resolve the end-of-line and whitespace question
Previous by thread: Re: Be careful with that axe, Eugene
Next by thread: I-D ACTION:draft-ietf-openpgp-rfc2440bis-10.txt
Index(es):
- Date
- Thread