openssh-unix-dev May 2011 archive
Main Archive Page > Month Archives  > openssh-unix-dev archives
openssh-unix-dev: Re: Security of OpenSSL ECDSA signatures

Re: Security of OpenSSL ECDSA signatures

From: Damien Miller <djm_at_nospam>
Date: Tue May 24 2011 - 06:57:28 GMT
To: Dan Kaminsky <>

On Tue, 24 May 2011, Damien Miller wrote:

> random delays will not help because you can sample to eliminate them. I
> think you would want something like the following, that rounds signing
> operations up to the next power of two milliseconds.

FYI this sleeps for around 30ms on my old IBM x40 laptop* using ECDSA
in a 256 bit curve field.


* cpu0: Intel(R) Pentium(R) M processor 1200MHz ("GenuineIntel" 686-class) 1.20 GHz

openssh-unix-dev mailing list