Adding a nounce before hashing as covert channel
Andrew Gallagher
andrewg at andrewg.com
Thu Dec 12 11:43:50 CET 2024
On 12 Dec 2024, at 09:39, Rainer Perske <rainer.perske at uni-muenster.de> wrote:
>
> Due to the thermodynamic barrier, minor weaknesses in SHA-2 and SHA-3 do not matter due to the sheer length of the hash.
>
> And you are not protecting at all against major weaknesses in the hash algorithm and you are not even considering possible weaknesses in other protocol elements.
It should be noted that the salt in v6 signatures also helps to protect against fault-based attacks. See https://eprint.iacr.org/2017/1014
A
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20241212/2b32b8ea/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Message signed with OpenPGP
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20241212/2b32b8ea/attachment.sig>
More information about the Gnupg-devel
mailing list