I read draft-ietf-ipsecme-dh-checks-01. I am not competent to understand if this addresses a real problem. I understood that (1 < r < p-1) is a test that many implementors did not do. I think that most implementations generated r from a PRNG.
I have not implemented ECDSA, but the instructions seemed well formatted, but I don't at this point know what they mean. -- Michael Richardson <[email protected]>, Sandelman Software Works
pgp3_DpJpKwlo.pgp
Description: PGP signature
_______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
