[Gnuk-users] Ed25519 for signing broken?
NIIBE Yutaka
gniibe at fsij.org
Tue Feb 10 01:07:03 UTC 2015
On 02/10/2015 05:56 AM, Jonathan Schleifer wrote:
> Yep, it is. There's no call to
> gpg_increment_digital_signature_counter (); in else if (attr ==
> ALGO_ED25519).
Thank you for catching this bug. Fixed in the repository.
OpenPGPcard has this signature counter, so that user can check how
many signatures have been computed by the card. When a host PC is
compromised and some signature was computed by malicious attack, user
still could detect the attack, that's a hope. Well, malicious attack
could also modify the output of 'gpg --card-status' before user can
see it, though.
--
More information about the gnuk-users
mailing list