diff options
author | Andy Polyakov <appro@openssl.org> | 2018-07-15 17:59:59 +0200 |
---|---|---|
committer | Andy Polyakov <appro@openssl.org> | 2018-07-18 16:10:04 +0200 |
commit | 1c073b9521ce7dbdd5689bdf7ae5fa87557c3529 (patch) | |
tree | ae5a15d5cae96835fedd3e91d58f7c22f11c458b /CHANGES | |
parent | 37132c9702328940a99b1307f742ab094ef754a7 (diff) |
CHANGES: mention blinding reverting in ECDSA. [skip ci]
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: David Benjamin <davidben@google.com>
(Merged from https://github.com/openssl/openssl/pull/6664)
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -9,6 +9,10 @@ Changes between 1.1.0h and 1.1.1 [xx XXX xxxx] + *) Revert blinding in ECDSA sign and instead make problematic addition + length-invariant. Switch even to fixed-length Montgomery multiplication. + [Andy Polyakov] + *) Use the new ec_scalar_mul_ladder scaffold to implement a specialized ladder step for binary curves. The new implementation is based on formulas from differential addition-and-doubling in mixed Lopez-Dahab projective |