[Cryptech Tech] Storage of curve parameters for ECDSA

Peter Stuge peter at stuge.se
Thu Jan 14 19:46:53 UTC 2016

Previous message (by thread): [Cryptech Tech] Storage of curve parameters for ECDSA
Next message (by thread): [Cryptech Tech] Storage of curve parameters for ECDSA
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Rob Austein wrote:
> > > Since I'm trying to write ECDSA core, not general-purpose EC math core,
> > > I thought, that it would make sense to take advantage of the fact and
> > > get rid of that redundant coefficient.
> > 
> > Is there a security concern with such an optimization - side-channel
> > or otherwise?
> 
> I don't think so.  The curve parameters are public information.

Please continue through all layers.

Could such an optimization somehow influence operations which use
private information to e.g. leak some of it?


//Peter

Previous message (by thread): [Cryptech Tech] Storage of curve parameters for ECDSA
Next message (by thread): [Cryptech Tech] Storage of curve parameters for ECDSA
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Tech mailing list