Adding a nounce before hashing as covert channel
Jacob Bachmeyer
jcb62281 at gmail.com
Fri Dec 13 02:16:22 CET 2024
On 12/12/24 05:15, Werner Koch wrote:
> On Wed, 11 Dec 2024 22:39, Jacob Bachmeyer said:
>
>> The problem is that strong algorithms *become* weak without advance
>> warning. Therefore, it is necessary to take measures to reduce the
> But we don't know in which way they become weak. You can't exclude that
> a new weakness is leveraged by the extra random salt [1]
So that would make adding salted signatures neutral: they protect
against one class of unknown attacks but could also enable another class
of unknown attacks.
> [...]
>
> [1] We are talking about a salt and not a nonce (number-used-once).
Now I have to ask: how is a salt different from a nonce?
-- Jacob
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20241212/5c730240/attachment.html>
More information about the Gnupg-devel
mailing list