Re: How regularly is the GnuPG source code examined?
From: Francois Grieu (fgrieu_at_francenet.fr)
Date: 09/28/05
- Next message: David Wagner: "Re: How regularly is the GnuPG source code examined?"
- Previous message: David Wagner: "Re: Re-rolled Salsa20 function"
- In reply to: David Wagner: "Re: How regularly is the GnuPG source code examined?"
- Next in thread: David Wagner: "Re: How regularly is the GnuPG source code examined?"
- Reply: David Wagner: "Re: How regularly is the GnuPG source code examined?"
- Reply: Unruh: "Re: How regularly is the GnuPG source code examined?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 28 Sep 2005 07:59:39 +0200
In article <dhchrf$15cn$1@agate.berkeley.edu>,
daw@taverner.cs.berkeley.edu (David Wagner) wrote:
> I already gave one example of an apparently accidental bug in PGP that
> (a) allowed to attacker, intercepting only the output of the program,
> to gain enough information to decrypt it easily; (b) could have been
> inserted by an insider; (c) was in fact not detected for a long time.
Is this anecdote, of great interest, documented in detail somewhere ?
Like which PGP, which version, on which platform ? Conditions for an
attack to be mountable ? Computational cost thereof ?
Thanks in advance,
François Grieu
- Next message: David Wagner: "Re: How regularly is the GnuPG source code examined?"
- Previous message: David Wagner: "Re: Re-rolled Salsa20 function"
- In reply to: David Wagner: "Re: How regularly is the GnuPG source code examined?"
- Next in thread: David Wagner: "Re: How regularly is the GnuPG source code examined?"
- Reply: David Wagner: "Re: How regularly is the GnuPG source code examined?"
- Reply: Unruh: "Re: How regularly is the GnuPG source code examined?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
