ecc: Store EdDSA session key in secure memory.
f9494b3f258e
Actions

Description

ecc: Store EdDSA session key in secure memory.

* cipher/ecc-eddsa.c (_gcry_ecc_eddsa_sign): use mpi_snew to allocate
session key.

An attacker who learns the EdDSA session key from side-channel
observation during the signing process, can easily revover the long-
term secret key. Storing the session key in secure memory ensures that
constant time point operations are used in the MPI library.

Signed-off-by: Jo Van Bulck <jo.vanbulck@cs.kuleuven.be>

Details

Provenance

Jo Van Bulck <jo.vanbulck@cs.kuleuven.be>	Authored on Jan 19 2017, 5:00 PM
• werner	Committed on Jun 1 2017, 3:54 PM

Parents

rCaf0d7eeac09e: mpi: Distribute asm files for aarch64 and asm

Branches

Unknown

Tags

Unknown

Event Timeline

• werner committed rCf9494b3f258e: ecc: Store EdDSA session key in secure memory. (authored by Jo Van Bulck <jo.vanbulck@cs.kuleuven.be>).Jun 1 2017, 3:54 PM

Changes (1)

Path

Size

cipher/

ecc-eddsa.c

rCf9494b3f258e

View Options