It seems Belgian eIDs are safe (apparently they use pre-ROCA Infineon code)https://twitter.com/zoobab/status/928248466580692998 …
"Hey we came up with this prime generation algorithm and it's totally faster and we had some expert review it and they said it's totally kewl, who needs public review, let's just go with this". And this is why DIY crypto is a bad idea.
-
-
Secure code to generate non-biased p/q is trivial. Pick a random number, test it for primality, test it for whatever things you don't like, pick a min/max bound, done. But people want FASTAH and then shit happens.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
This Tweet is unavailable.
-
It's probably a nontrivial part of the manufacturing process for these things. But still.
- Show replies
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.