|
|
|
|
|
|
by tptacek
2350 days ago
|
|
|
"Dual Elliptic Curve" is an RNG, a PKRNG, that works by using a public key to encrypt its state, which is then directly revealed (as public key ciphertext) to callers (for instance: in the TLS random blob). The problem with PKRNGs has nothing to do with elliptic curves; you could design one with RSA as well. The problem is that for a given public key, there's also a private key, and if you have that private key you can "decrypt" the random value to reveal the RNG's state. That's not a flawed curve that NSA pushed; it's a much more straightforward cryptographic backdoor. |
|
|