[Cryptech Tech] Introduction

Rob Austein sra at hactrn.net
Wed Feb 22 21:01:55 UTC 2017

We've also put some effort into using constant time algorithms to the
extent possible in the software running on the ARM.  As Pavel
suggests, this is not always possible in software (eg, EC point
doubling is a fundamentally different algorithm than EC point addition
for non-equal points), but, where possible, we do use constant time
algorithms (see, eg, the field operations in the software ECDSA
implementation, byte-string comparison loops in various places, etc).

More information about the Tech mailing list