Re: [openpgp] RSA-PSS and RSA-OAEP for v5

ietf-openpgp

Re: [openpgp] RSA-PSS and RSA-OAEP for v5

2021-02-28 12:45:10

On Sun, 28 Feb 2021 03:49:45 +0000
Peter Gutmann <pgut001(_at_)cs(_dot_)auckland(_dot_)ac(_dot_)nz> wrote:

See also my post to the cryptography list last year about all the
games an attacker can play with OAEP because the parameters aren't
authenticated and therefore attacker-controlled.


This is a valid concern, but it can be completely eliminated by fixing
all parameters in the standard.

-- 
Hanno Böck
https://hboeck.de/

_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[openpgp] RSA-PSS and RSA-OAEP for v5, brian m. carlson Re: [openpgp] RSA-PSS and RSA-OAEP for v5, Peter Gutmann Re: [openpgp] RSA-PSS and RSA-OAEP for v5, brian m. carlson Re: [openpgp] RSA-PSS and RSA-OAEP for v5, Hanno Böck <= Re: [openpgp] RSA-PSS and RSA-OAEP for v5, Werner Koch Re: [openpgp] RSA-PSS and RSA-OAEP for v5, brian m. carlson Re: [openpgp] RSA-PSS and RSA-OAEP for v5, Stephen Farrell Re: [openpgp] RSA-PSS and RSA-OAEP for v5, brian m. carlson Re: [openpgp] RSA-PSS and RSA-OAEP for v5, Stephen Farrell Re: [openpgp] RSA-PSS and RSA-OAEP for v5, Santiago Torres-Arias

Previous by Date:	Re: [openpgp] Curve448 in ECDH, brian m. carlson
Next by Date:	Re: [openpgp] RSA-PSS and RSA-OAEP for v5, Werner Koch
Previous by Thread:	Re: [openpgp] RSA-PSS and RSA-OAEP for v5, brian m. carlson
Next by Thread:	Re: [openpgp] RSA-PSS and RSA-OAEP for v5, Werner Koch
Indexes:	[Date] [Thread] [Top] [All Lists]