[SiNiquity]

Implementations of RSA have suffered from all sorts of problems that have led to real world attacks irrespective of the hardness of factoring prime numbers. The intuition behind RSA being hard is alluring in its simplicity, but it's deceptive. https://blog.trailofbits.com/2019/07/08/fuck-rsa/

[dehrmann]

How many of these types of issues are unique to RSA? Does it being old help in that more of them have been discovered, and there are known implementations that are usually good?