Side-channel leakage in the mpz_powm_sec interface
Hubert Kario
hkario at redhat.com
Thu Sep 7 16:56:12 CEST 2023
On Friday, 25 August 2023 14:02:51 CEST, Niels Möller wrote:
> Hubert Kario <hkario at redhat.com> writes:
>
>> On Friday, 25 August 2023 07:51:10 CEST, Niels Möller wrote:
>> Thus, I think it's more of a documentation issue than code issue:
>> it will be much better to just say that mpz_powm_sec() is not usable for
>> cryptographic purposes and to deprecate it.
>
> Not sure if "unusable" is right, but besides that, I agree documenting
> the problem, and discouraging usage, is reasonable action.
So... how do we do that?
Should I prepare a patch for this (I'm guessing that the doc sources are
together with code), or are you going to do that?
--
Regards,
Hubert Kario
Principal Quality Engineer, RHEL Crypto team
Web: www.cz.redhat.com
Red Hat Czech s.r.o., Purkyňova 99/71, 612 45, Brno, Czech Republic
More information about the gmp-bugs
mailing list