Adding a nounce before hashing as covert channel
Wiktor Kwapisiewicz
wiktor at metacode.biz
Thu Dec 12 12:58:26 CET 2024
Hi Andrew,
On 12.12.2024 11:43, Andrew Gallagher via Gnupg-devel wrote:
> It should be noted that the salt in v6 signatures also helps to protect
> against fault-based attacks. See https://eprint.iacr.org/2017/1014
I'm not entirely sure that the v6 salt helps in this case - it
influences the final digest but the fault attack then operates on that
new digest. I've read section 9. Countermeasures and couldn't find any
mention of salt being effective.
Of course, the obligatory disclaimer: I'm not a cryptographer and it'd
be nice to hear one voice their opinion and arguments.
Kind regards,
Wiktor
More information about the Gnupg-devel
mailing list