Home GnuPG

ecc: Add blinding for ECDSA.

Description

ecc: Add blinding for ECDSA.

* cipher/ecc-ecdsa.c (_gcry_ecc_ecdsa_sign): Blind secret D with
randomized nonce B.

CVE-id: CVE-2018-0495

  • Reported-by: Keegan Ryan <Keegan.Ryan@nccgroup.trust>
  • Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>

Details

Provenance
gniibeAuthored on Jun 13 2018, 8:28 AM
Parents
rC7b6c2afd699e: ecc: Improve gcry_mpi_ec_curve_point
Branches
Unknown
Tags
Unknown