[Ach] Cryptology ePrint Archive: Report 2013/734

Aaron Zauner azet at azet.org
Fri Nov 15 03:29:44 CET 2013

Very interesting, have been looking for something like this for a long time, thanks!


On 14 Nov 2013, at 14:39, Pepi Zawodsky <pepi.zawodsky at maclemon.at> wrote:

> This just popped in via Twitter.
> Elliptic Curve Cryptography in Practice
> http://eprint.iacr.org/2013/734.pdf
> Abstract:
> In this paper, we perform a review of elliptic curve cryptography (ECC), as it is used in practice today, in order to reveal unique mistakes and vulnerabilities that arise in implementations of ECC. We study four popular protocols that make use of this type of public-key cryptography: Bitcoin, secure shell (SSH), transport layer security (TLS), and the Austrian e-ID card. We are pleased to observe that about 1 in 10 systems support ECC across the TLS and SSH protocols. However, we find that despite the high stakes of money, access and resources protected by ECC, implementations suffer from vulnerabilities similar to those that plague previous cryptographic systems.
> Source: http://eprint.iacr.org/2013/734
> Pepi
> _______________________________________________
> Ach mailing list
> Ach at lists.cert.at
> http://lists.cert.at/cgi-bin/mailman/listinfo/ach

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1091 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.cert.at/pipermail/ach/attachments/20131115/74997762/attachment.sig>

More information about the Ach mailing list