Talking about Cryptodevices... which one?

NdK ndk.clanbo at
Thu Jan 29 20:39:36 CET 2015

Il 28/01/2015 02:46, NIIBE Yutaka ha scritto:

> specification (and with SHA256).  It's default s2kcount is 192 as the
> MCU is slow enough, but you can configure it at compile time (like
> 65535 for host PC, or more).
Uh, I think this exposes a weakness: if the attacker "somehow" accesses
the EEPROM and reads encrypted key material, a low s2k count means he
can recover plain key material quite faster than with more iterations.
Luckily it's configurable. :) Power of open source!


More information about the Gnupg-users mailing list