Arthur Besse@lemmy.mlM to Cryptography@lemmy.mlEnglish · 7 months agoPutty vulnerability: bias in ECDSA deterministic nonce generation leads to compromise of NIST P521 keys with ~60 signatureswww.chiark.greenend.org.ukexternal-linkmessage-square0fedilinkarrow-up113arrow-down11file-textcross-posted to: security@programming.dev
arrow-up112arrow-down1external-linkPutty vulnerability: bias in ECDSA deterministic nonce generation leads to compromise of NIST P521 keys with ~60 signatureswww.chiark.greenend.org.ukArthur Besse@lemmy.mlM to Cryptography@lemmy.mlEnglish · 7 months agomessage-square0fedilinkfile-textcross-posted to: security@programming.dev
writeup from the researcher who discovered this: https://www.openwall.com/lists/oss-security/2024/04/15/6