2014-05-16 3:52 GMT-03:00 Robert Ransom <[email protected]>: > And if an attacker compromises a party's ephemeral keys in signed DH, > the attacker can not only decrypt the session, but also learn that > party's long-term signing key.
Sorry if this is a stupid question, but how does this happen? Or do you just mean that if an attacker has access to the ephemeral key then they probably also have access to the signing key? Conrado _______________________________________________ Curves mailing list [email protected] https://moderncrypto.org/mailman/listinfo/curves
