[openssl-users] Elliptic curve implementation sanity check

Billy Brumley bbrumley at gmail.com
Fri Oct 23 12:27:05 UTC 2015

> * On architectures where nistz256 is not implemented, a default
>   OpenSSL build will use the generic Weierstrass implementation.  I
>   haven't been able to determine whether there are significant timing
>   channels in that implementation.

Researches have been beating up "the generic Weierstrass
implementation" since 2009.


More information about the openssl-users mailing list