[11462] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: adding noise blob to data before signing

daemon@ATHENA.MIT.EDU (bear)
Mon Aug 12 10:30:24 2002

Date: Sun, 11 Aug 2002 20:34:29 -0700 (PDT)
From: bear <bear@sonic.net>
To: Eric Rescorla <ekr@rtfm.com>
Cc: Derek Atkins <derek@ihtfp.com>, Eugen Leitl <eugen@leitl.org>,
	Cryptography List <cryptography@wasabisystems.com>
In-Reply-To: <kj4re2zkyr.fsf@romeo.rtfm.com>



On 10 Aug 2002, Eric Rescorla wrote:

>It's generally a bad idea to sign RSA data directly. The RSA
>primitive is actually quite fragile. At the very least you should
>PKCS-1 pad the data.
>
>-Ekr

This is true.  Cyclopedia Cryptologia has a short article detailing
some of the attacks against direct use of RSA.

http://www.disappearing-inc.com/R/rsa.html

is a good URL if you want to read it.

			Ray



---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[11462] in cryptography@c2.net mail archive

Re: adding noise blob to data before signing

daemon@ATHENA.MIT.EDU (bear)Mon Aug 12 10:30:24 2002

daemon@ATHENA.MIT.EDU (bear)
Mon Aug 12 10:30:24 2002