Home GnuPG

ecc: Add blinding for ECDSA.

Description

ecc: Add blinding for ECDSA.

* cipher/ecc-ecdsa.c (_gcry_ecc_ecdsa_sign): Blind secret D with
randomized nonce B.

(cherry picked from commit 9010d1576e278a4274ad3f4aa15776c28f6ba965)

CVE-id: CVE-2018-0495

  • Reported-by: Keegan Ryan <Keegan.Ryan@nccgroup.trust>
  • Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>

Details

Provenance
gniibeAuthored on Jun 13 2018, 8:28 AM
Parents
rC846f8fe8b3be: ecc: Improve gcry_mpi_ec_curve_point
Branches
Unknown
Tags
Unknown