[openssl-users] Elliptic curve implementation sanity check
bbrumley at gmail.com
Fri Oct 23 12:27:05 UTC 2015
> * On architectures where nistz256 is not implemented, a default
> OpenSSL build will use the generic Weierstrass implementation. I
> haven't been able to determine whether there are significant timing
> channels in that implementation.
Researches have been beating up "the generic Weierstrass
implementation" since 2009.
More information about the openssl-users