cvs commit: src/sys/amd64/amd64 mp_machdep.csrc/sys/amd64/include cpufunc.h src/sys/i386/i386 mp_machdep.c src/sys/i386/include cpufunc.h

Colin Percival cperciva at
Sat May 14 23:06:59 PDT 2005

Nate Lawson wrote:
> That is at best, hyperbole.

Have you been talking to Intel lately?

>  Crypto implementations which properly
> implement blinding or operate in constant time are not vulnerable.

Crypto implementations which implement blinding are vulnerable.

Crypto implementations which operate in constant time would not be vulnerable,
but not for the reasons you think, and I don't think any such implementations
currently exist.

> Disabling HTT only decreases the quality of measurement, requiring more
> measurements.

No.  Read my paper.  I'm not measuring the total time needed for an RSA
operation; I'm watching it as it occurs.

Colin Percival

More information about the cvs-all mailing list