Talking about Cryptodevices... which one?
NdK
ndk.clanbo at gmail.com
Thu Jan 29 20:39:36 CET 2015
Il 28/01/2015 02:46, NIIBE Yutaka ha scritto:
[...]
> specification (and with SHA256). It's default s2kcount is 192 as the
> MCU is slow enough, but you can configure it at compile time (like
> 65535 for host PC, or more).
Uh, I think this exposes a weakness: if the attacker "somehow" accesses
the EEPROM and reads encrypted key material, a low s2k count means he
can recover plain key material quite faster than with more iterations.
Luckily it's configurable. :) Power of open source!
BYtE,
Diego.
More information about the Gnupg-users
mailing list