On validating Curve25519 public keys, by @veorq https://research.kudelskisecurity.com/2017/04/25/should-ecdh-keys-be-validated/ …
-
So what? Invalid padding rejected anyway
Sometimes rejecting things early or in a different way introduces security vulnerabilities. Crypto != application logic.
-
-
Yeah you gotta be careful with side channels or oracles
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
i'd figure comparing against 0 in fixed time wouldn't be so tricky
-
It's not just about fixed time. Also, I'm not saying it's difficult or a bad idea in *this* case. I'm just rejecting that blanket argument.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.