Security of OpenSSL ECDSA signatures

Damien Miller djm at
Tue May 24 16:57:28 EST 2011

On Tue, 24 May 2011, Damien Miller wrote:

> random delays will not help because you can sample to eliminate them. I
> think you would want something like the following, that rounds signing
> operations up to the next power of two milliseconds.

FYI this sleeps for around 30ms on my old IBM x40 laptop* using ECDSA
in a 256 bit curve field.


* cpu0: Intel(R) Pentium(R) M processor 1200MHz ("GenuineIntel" 686-class) 1.20 GHz

More information about the openssh-unix-dev mailing list