[tahoe-dev] [tahoe-lafs] #217: DSA-based mutable files -- small URLs, fast file creation

tahoe-lafs trac at allmydata.org
Tue May 12 15:46:18 PDT 2009


#217: DSA-based mutable files -- small URLs, fast file creation
----------------------------+-----------------------------------------------
 Reporter:  zooko           |           Owner:  zooko     
     Type:  enhancement     |          Status:  assigned  
 Priority:  major           |       Milestone:  eventually
Component:  code-mutable    |         Version:  0.7.0     
 Keywords:  mutable crypto  |   Launchpad_bug:            
----------------------------+-----------------------------------------------

Comment(by swillden):

 Replying to [comment:45 zooko]:
 > That completely solves the weakness that you've identified, right Shawn?

 I may be missing something, but I don't think it does.

 The issue I referred to has to do not with the generation of y, but of the
 multiplication of x by y (mod q), and the subsequent use of xy as the
 signing key.  The problem is that the distribution of xy mod q values is
 not uniform.

 I should mention that it's been years since I studied ECDSA and I don't at
 present understand anything about how the signing key xy is used to
 perform a signing operation.  I'm just noting that your method for
 constructing the signing key results in some signing keys being more
 likely than others.

-- 
Ticket URL: <http://allmydata.org/trac/tahoe/ticket/217#comment:46>
tahoe-lafs <http://allmydata.org>
secure decentralized file storage grid


More information about the tahoe-dev mailing list