lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 30 Apr 2015 16:13:26 +0200
From: Krisztián Pintér <pinterkr@...il.com>
To: "discussions@...sword-hashing.net" <discussions@...sword-hashing.net>
Subject: Re: [PHC] Maximising Pseudo-Entropy versus resistance to Side-Channel Attacks

On Thu, Apr 30, 2015 at 3:51 PM,  <Stefan.Lucks@...-weimar.de> wrote:
>> i find this argument seriously dishonest. i'm preaching side channel
>> protection for a long time, and for exactly the same reason. and i
>> don't remember you coming along and supporting this position.
> Then you either have a problem with your memory, or with your cognition.
>
> See <https://eprint.iacr.org/2014/881>.

this article says nothing about the importance of side channel
attacks. it just mentions which algorithms are safe against it and
which are not. the question here is the relevance of such attacks. and
the time you bring it up is not appropriate considering that almost
all of the second round candidates are unsafe in this regard, while
many safe algorithms were eliminated. i stand by my statement.

Powered by blists - more mailing lists