[cryptography] SSH uses secp256/384r1 which has the same parameters as what's in SEC2 which are the same the parameters as specified in SP800-90 for Dual EC DRBG!
kyhwana at gmail.com
Mon Sep 9 04:49:26 EDT 2013
Is there anyone on the lists qualified in ECC mathematics that can
confirm that? And what ramifications it has, if any..
On Mon, Sep 9, 2013 at 8:45 PM, Eugen Leitl <eugen at leitl.org> wrote:
> Forwarded without permission, hence anonymized:
> Hey, I had a look at SEC2 and the TLS/SSH RFCs. SSH uses secp256/384r1
> which has the same parameters as what's in SEC2 which are the same the
> parameters as specified in SP800-90 for Dual EC DRBG!
> TLS specifies you can use those two curves as well...
> Surely that's not coincidence..
> cryptography mailing list
> cryptography at randombit.net
More information about the cryptography