mpi: Avoid data-dependent timing variations in mpi_powm.
5e72b6c76ebeUnpublished
Actions

Edit Commit
Download Raw Diff
Edit Related Objects...
Edit Revisions
Edit Tasks
Mute Notifications
Award Token

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

mpi: Avoid data-dependent timing variations in mpi_powm.

* mpi/mpi-pow.c (mpi_powm): Access all data in the table by
mpi_set_cond.

Access to the precomputed table was indexed by a portion of EXPO,
which could be mounted by a side channel attack. This change fixes
this particular data-dependent access pattern.

Details

Provenance

• gniibe

Authored on Feb 26 2015, 1:07 PM

Parents

rCd9f002899d26: mpi: Revise mpi_powm.

Branches

Unknown

Tags

Unknown

Event Timeline

NIIBE Yutaka <gniibe@fsij.org> committed rC5e72b6c76ebe: mpi: Avoid data-dependent timing variations in mpi_powm. (authored by NIIBE Yutaka <gniibe@fsij.org>).Feb 26 2015, 1:27 PM

Changes (1)

Path

Size

mpi/

mpi-pow.c

rC5e72b6c76ebe

View Options

mpi: Avoid data-dependent timing variations in mpi_powm.5e72b6c76ebeUnpublishedActions