Re: [Cfrg] Schnorr just as vulnerable to bad RNG

Stephen Farrell <stephen.farrell@cs.tcd.ie> Fri, 25 July 2014 21:16 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6879A1A0342 for <cfrg@ietfa.amsl.com>; Fri, 25 Jul 2014 14:16:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2r7ucxvOoluh for <cfrg@ietfa.amsl.com>; Fri, 25 Jul 2014 14:16:45 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) by ietfa.amsl.com (Postfix) with ESMTP id 8611F1A0252 for <cfrg@irtf.org>; Fri, 25 Jul 2014 14:16:45 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 15D54BE7D; Fri, 25 Jul 2014 22:16:44 +0100 (IST)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zQVMQG0e1KbB; Fri, 25 Jul 2014 22:16:43 +0100 (IST)
Received: from [31.133.147.251] (dhcp-93fb.meeting.ietf.org [31.133.147.251]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id BE42DBE7B; Fri, 25 Jul 2014 22:16:42 +0100 (IST)
Message-ID: <53D2C939.7080509@cs.tcd.ie>
Date: Fri, 25 Jul 2014 22:16:41 +0100
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.0
MIME-Version: 1.0
To: Dan Brown <dbrown@certicom.com>, "cfrg@irtf.org" <cfrg@irtf.org>
References: <20140725131738.6639765.60290.17138@certicom.com>
In-Reply-To: <20140725131738.6639765.60290.17138@certicom.com>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
Archived-At: http://mailarchive.ietf.org/arch/msg/cfrg/kvUQoSJyfLkCBg2VYrbOfNO-KT0
Subject: Re: [Cfrg] Schnorr just as vulnerable to bad RNG
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Jul 2014 21:16:47 -0000

Hiya,

On 25/07/14 14:17, Dan Brown wrote:
> ā€ˇProcedurally, I think signature algorithm choice, and method to
> generate ephemerals is a CFRG issue, not a SAAG issue.

No. IETF WGs can choose to ask CFRG for advice and, when given,
that's very welcome and seriously considered. CFRG, nor the IRTF
more generally, don't get to determine IETF consensus.

S.