Can we trust cryptographic software? Cryptographic flaws in GNU privacy guard v1.2.3

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3027, Issue , 2004, Pages 555-570

  Nguyen, Phong Q ^a  

^a ECOLE NORMALE SUPÉRIEURE   (France)

Author keywords

Cryptanalysis; ElGamal; GnuPG; GPG; Implementation; OpenPGP; Public key cryptography; RSA

Indexed keywords

AUTHENTICATION; CRYPTOGRAPHY; OPEN SYSTEMS; PUBLIC KEY CRYPTOGRAPHY; REVERSE ENGINEERING; SOFTWARE ENGINEERING;

CRYPTANALYSIS; ELGAMAL; GNUPG; GPG; IMPLEMENTATION; OPENPGP; RSA;

OPEN SOURCE SOFTWARE;

EID: 35048881103     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-24676-3_33     Document Type: Article

References (30)

1. D. M. Bellovin. Cryptography and the Internet. In Proc. of Crypto '98, volume 1462 of LNCS. IACR, Springer-Verlag, 1998.
2. D. Bleichenbacher. On the generation of one-time keys in DSS. Manuscript, February 2001. Result presented at the Monteverita workshop of March 2001.
3. D. Bleichenbacher. Generating ElGamal signatures without knowing the secret key. In Proc. of Eurocrypt '96, volume 1070 of LNCS, pages 10-18. IACR, Springer-Verlag, 1996.
4. D. Bleichenbacher. Chosen ciphertext attacks against protocols based on the RSA encryption standard PKCS #1. In Proc. of Crypto '98, volume 1462 of LNCS, pages 1-12. IACR, Springer-Verlag, 1998.
5. D. Boneh, A. Joux, and P. Q. Nguyen. Why textbook ElGamal and RSA encryption are insecure. In Proc. of Asiacrypt '00, volume 1976 of LNCS, pages 30-43. IACR, Springer-Verlag, 2000.
6. J. Callas, L. Donnerhacke, H. Finney, and R. Thayer. OpenPGP message format: Request for Comments 2440. Available as http://www.ietf.org/rfc/rfc2440. txt.
7. J.-S. Coron, D. Naccache, and J. P. Stern. On the security of RSA padding. In Proc. of Crypto '99, volume 1666 of LNCS, pages 1-18. IACR, Springer-Verlag, 1999.
8. European Union. European project IST-1999-12324: New European Schemes for Signatures, Integrity, and Encryption (NESSIE). http://www.cryptonessie.org.
9. I. Goldberg and D. Wagner. Randomness and the Netscape browser. Dr Dobb's, January 1996.
10. GPG. The GNU privacy guard, http://www.gnupg.org.
11. P. Gutmann. Software generation of practically strong random numbers. In Proc. of the 7th Usenix Security Symposium, 1998.
12. P. Gutmann. Lessons learned in implementing and deploying crypto software. In Proc. of the 11th Usenix Security Symposium, 2002.
13. N. A. Howgrave-Graham and N. P. Smart. Lattice attacks on digital signature schemes. Design, Codes and Cryptography, 23:283-290, 2001.
14. IEEE. P1363: Standard specifications for public-key cryptography. Available at http://grouper.ieee.org/groups/1363/.
15. IPA. Cryptrec: Evaluation of cryptographic techniques. Available at http://www.ipa.go.jp/security/enc/CRYPTREC/index-e.html.
16. K. Jallad, J. Katz, and B. Schneier. Implementation of chosen-ciphertext attacks against PGP and GnuPG. In Proc. of ISO '02, volume 2433 of LNCS. Springer-Verlag, 2002.
17. B. Kaliski. PKCS #1: USA encryption version 1.5: Request for Comments 2313. Available as http://www.ietf.org/rfc/rfc2313.txt.
18. J. Katz and B. Schneier. A chosen ciphertext attack against several E-Mail encryption protocols. In Proc. of the 9th Usenix Security Symposium, 2000.
19. W. Koch. GnuPG's ElGamal signing keys compromised. Internet public announcement on November 27th, 2003.
20. RSA Labs. PKCS #1: RSA cryptography standard. Available at http://www.rsasecurity.com/rsalabs/pkcs/pkcs-1/index.html.
21. J. Manger. A chosen ciphertext attack on RSA Optimal Asymmetric Encryption Padding (OAEP) as standardized in PKCS #1 v2.0. In Proc. of Crypto '01, volume 2139 of LNCS, pages 230-231. IACR, Springer-Verlag, 2001.
22. P. Q. Nguyen and I. E. Shparlinski. The insecurity of the Digital Signature Algorithm with partially known nonces. Journal of Cryptology, 15(3), 2002.
23. P. Q. Nguyen and D. Stehlé. Low-dimensional lattice basis reduction revisited. In Algorithmic Number Theory - Proc. of ANTS-VI, LNCS. Springer-Verlag, 2004.
24. P. Q. Nguyen and J. Stern. The two faces of lattices in cryptology. In Proc. Workshop on Cryptography and Lattices (CALC '01), volume 2146 of LNCS, pages 146-180. Springer-Verlag, 2001.
25. P. C. van Oorschot and M. J. Wiener. On Diffie-Hellman key agreement with short exponents. In Proc. of Eurocrypt '96, volume 1070 of LNCS, pages 332-343. IACR, Springer-Verlag, 1996.
26. OpenPGP. http://www.openpgp.org.
27. PGP. Pretty good privacy, http://www.pgp.com.
28. B. Schneier. Security in the real world: How to evaluate security technology. Computer Security Journal, XV(4), 1999.
29. V. Shoup. Number Theory C++ Library (NTL) version 5.3.1. Available at http://wiw.shoup.net/ntl/.
30. J. Stern, D. Pointcheval, J. Malone-Lee, and N. P. Smart. Flaws in applying proof methodologies to signature schemes. In Proc. of Crypto '02, volume 2442 of LNCS, pages 93-110. IACR, Springer-Verlag, 2002.