[19497] in cryptography@c2.net mail archive
OpenSSL BIGNUM vs. GMP
daemon@ATHENA.MIT.EDU (Ben Laurie)
Tue Jan 3 13:42:32 2006
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Sat, 31 Dec 2005 11:04:31 +0000
From: Ben Laurie <ben@algroup.co.uk>
To: Cryptography <cryptography@metzdowd.com>
It appears that one reason GMP may sometimes be faster than OpenSSL for
RSA is that it seems that GMP does not do blinding or constant time
arithmetic, both of which are needed to defend against known attacks.
So, if you are going to use GMP for speed, be aware that you may be
risking your private keys.
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html http://www.thebunker.net/
"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
