Werner Koch via Gnupg-users wrote:
[...]

On Sat,  9 Sep 2023 22:07, Robert J. Hansen said:
and for the vast majority of users isn't worth it.  The easy wins (28%
cost savings on RSA encryption!  Whee, almost half a millisecond!) are

The blinding we use for RSA (to mitigate side-channel attacks) should be
in the same range as these wins.  I bet that by adding threads to the
computation you will open another can of side-channel attacks.

So using threads to compute a blinded RSA operation would just about recover the computational cost of blinding the calculation? How would hypothetical thread-related side channels matter if we are using blinding around the parallel calculation?


-- Jacob

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-users

Reply via email to