[Ach] OpenSSH ETM implementation error

Aaron Zauner azet at azet.org
Tue Jun 21 08:55:58 CEST 2016


Our recommendations go with EtM in OpenSSH, Kenny Paterson published this slide deck recently: http://www.turing-gateway.cam.ac.uk/documents/tgmw35/Kenny%20Paterson.pdf

They identify a CBC timing oracle (not much used anymore) but more importantly: they identify a error in the generic Encrypt-then-Mac implementation in OpenSSH which is used quite a lot. I'm not aware of upstream patches.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.cert.at/pipermail/ach/attachments/20160621/d09618da/attachment.sig>

More information about the Ach mailing list