[Ach] some thoughts on POODLE, BERserk etc.
hanno at hboeck.de
Tue Nov 4 23:01:47 CET 2014
Am Tue, 04 Nov 2014 21:47:55 +0000
schrieb ianG <iang at iang.org>:
> Nice article!!
> I use e=3, is it fundamentally broken? Or just in cohoots with pkcs
Basically I think the only practical attack on it is related to a
combination of pkcs #1 1.5, e=3 and a broken implementation.
(there's another attack against "plain" rsa that relies on small
exponents - but plain rsa is a no-go in so many ways this doesn't
However it feels to me that it's generally to be considered a risky
mail/jabber: hanno at hboeck.de
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 819 bytes
Desc: not available
More information about the Ach