Re: SSH keys: DSA vs RSA

Date: Wed, 14 May 2008 17:01:15 -0700
From: Russ Allbery <rra@xxxxxxxxxx>
Subject: Re: SSH keys: DSA vs RSA

Steve Greenland <steveg@xxxxxxxxxxxxx> writes:
> "brian m. carlson" <sandals@xxxxxxxxxxxxxxxxxxxxxxx> wrote: 

>> Therefore, anyone who had a DSA key has had it compromised...

> Shouldn't that be "anyone who had a DSA key *created by the flawed
> version of openssl* has had it compromised..."? Or are you asserting
> something stronger?

He's asserting something stronger.  As I understand it, if you use a
perfectly valid and strong DSA key with a weak nonce (such as from a
broken random number generator), you just revealed your DSA key to someone
who knows what to look for and can brute-force or otherwise determine the
nonce.

-- 
Russ Allbery (rra@xxxxxxxxxx)               <http://www.eyrie.org/~eagle/>

-- 
To UNSUBSCRIBE, email to debian-devel-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx

Follow-Ups:
- Re: SSH keys: DSA vs RSA
  - From: Goswin von Brederlow

References:
- SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
  - From: Ben Finney
- Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
  - From: brian m. carlson
- Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
  - From: Steve Greenland

Prev by Date: Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
Next by Date: Re: conglomeration packages (Re: Will nvidia-graphics-drivers ever transition to testing?)
Previous by thread: Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
Next by thread: Re: SSH keys: DSA vs RSA
Index(es):
- Date
- Thread

lists-archives.org

Re: SSH keys: DSA vs RSA