Avatar
Bohemia 2y ago

how many weak NIST appoved ECDSA implementations are floating around 😬

https://research.kudelskisecurity.com/2023/03/06/polynonce-a-tale-of-a-novel-ecdsa-attack-and-bitcoin-tears/

Reply to this note

Please Login to reply.

Discussion

Avatar
freecritter 2y ago

Fascinating

Avatar
Bohemia 2y ago

it really is! the math to find relations between consecutive nonces from a PRNG without enough entropy to retrieve the signing key is 🤯

Avatar
Bohemia 2y ago

in order to retrieve...* (for clarity)

Avatar
SGT.FISH 2y ago

Seems intresting gonna read it tomorrow with more brain cells active

Avatar
Bohemia 2y ago

🤝

Avatar
SGT.FISH 2y ago

Was a good read thank you for others diving in the bitcointalk forum discussion is a little less heavy if you just want a summary

Avatar
Bohemia 2y ago

link? 🤗 dont think I've ever been there

Avatar
SGT.FISH 2y ago

https://bitcointalk.org/index.php?topic=1431060.0

And

https://bitcointalk.org/index.php?topic=581411.0

🤗

Avatar
SGT.FISH 2y ago

Talking about early attack like the threads are linked in the article as well just very far down

Avatar
Bohemia 2y ago

oh, this is great ! been thinking about what RNG wouldnt have enough entropy, like how did that happen... no reseeds? will read more later! 🙏

Avatar
SGT.FISH 2y ago

🤝