Home GnuPG

ecc: Store EdDSA session key in secure memory.

Description

ecc: Store EdDSA session key in secure memory.

* cipher/ecc-eddsa.c (_gcry_ecc_eddsa_sign): use mpi_snew to allocate
session key.

An attacker who learns the EdDSA session key from side-channel
observation during the signing process, can easily revover the long-
term secret key. Storing the session key in secure memory ensures that
constant time point operations are used in the MPI library.

  • Signed-off-by: Jo Van Bulck <jo.vanbulck@cs.kuleuven.be>

Details

Provenance
Jo Van Bulck <jo.vanbulck@cs.kuleuven.be>Authored on Jan 19 2017, 5:00 PM
wernerCommitted on Jun 1 2017, 3:54 PM
Parents
rCaf0d7eeac09e: mpi: Distribute asm files for aarch64 and asm
Branches
Unknown
Tags
Unknown

Event Timeline