Aug 24, 2016
burdges commented on issue briansmith/ring#264
@burdges

I found the article A New RSA-CRT Algorithm Resistant to Powerful Fault Attacks by two Certicom guys, which provides the same sort of fault protect…

Aug 24, 2016
burdges commented on issue dwrensha/capnp-rpc-rust#12
@burdges

I'd imagine being "zero cost" on windows means something like gjio's windows side to futures-rs, no? Just noticed this blog post about tokio too, …

Aug 23, 2016
Aug 23, 2016
burdges commented on issue dwrensha/capnp-rpc-rust#12
@burdges

At some point I suppose this question becomes about futures-rs.

Aug 23, 2016
burdges commented on pull request briansmith/ring#273
@burdges

Wait, there is no optimization for parallel signing with the same key here, ala Ed25519 tricks, right?

Aug 22, 2016
burdges commented on issue briansmith/ring#264
@burdges

I forget if I mentioned this previously but RSA blind signatures need a FDH rather than a randomized scheme, like PSS. I simply chose to key the FD…

Aug 21, 2016
burdges commented on issue briansmith/ring#264
@burdges

Isn't the $+ r (y -y')$ defense proposed by the non-random faults paper cheap, assuming you're already verifying the modular exponentiation anyways…

Aug 18, 2016
Aug 18, 2016
Aug 17, 2016
@burdges

I've likely missed some relevant conversations, but the payment app learning the recipient sounds fine in principle. It should not learn this until…

Aug 15, 2016
Aug 14, 2016
Aug 14, 2016
Aug 13, 2016
burdges starred zcash/bn
Aug 11, 2016
Aug 8, 2016
burdges commented on pull request kc1212/gnunet-rs#3
@burdges

At some point we'll want to restructure where this happens because it'll come up anytime key material gets used

Aug 4, 2016
Aug 4, 2016
Aug 3, 2016
Aug 2, 2016
Jul 31, 2016
Jul 31, 2016
Jul 29, 2016
@burdges
Build fails with nightly
Jul 29, 2016
Jul 28, 2016
Jul 27, 2016
Jul 27, 2016
Jul 27, 2016
burdges commented on issue w3c/webpayments#159
@burdges

These sorts of API queries sound like a serious security flaw. I'd think the merchant should just invoke the API and then continue on as if the AP…