diff options
author | Jeff Burdges <burdges@gnunet.org> | 2016-03-20 14:44:36 +0000 |
---|---|---|
committer | Jeff Burdges <burdges@gnunet.org> | 2016-03-20 14:44:36 +0000 |
commit | 60de5f48cbfc3868570284e91415ca7e06c390e1 (patch) | |
tree | 3e75dfd8c6a3400b1641655d0e96104420535d42 /src/util/Makefile.am | |
parent | 157f9a2bc96a0b1594effe78158894e59e03a033 (diff) | |
download | gnunet-60de5f48cbfc3868570284e91415ca7e06c390e1.tar.gz gnunet-60de5f48cbfc3868570284e91415ca7e06c390e1.zip |
Implement a Full Domain Hash (FDH) for RSA signatures and blind signatures
This gives a measure of provable security to the Taler exchange/mint
against hypothetical one-more forgery attacks. See:
https://eprint.iacr.org/2001/002.pdf
http://www.di.ens.fr/~pointche/Documents/Papers/2001_fcA.pdf
We seed the FDH with the denomination keys as as a homage to RSA-PSS.
This may slightly improves the exchanges's resistance to a violation
of RSA-KTI and against insiders who can influence the choice of RSA
keys but cannot actually exfiltrate them.
Adopting FDH fixes a bug when using 512 bit RSA keys as well.
Diffstat (limited to 'src/util/Makefile.am')
-rw-r--r-- | src/util/Makefile.am | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/util/Makefile.am b/src/util/Makefile.am index 65b53b91d..c38f19c93 100644 --- a/src/util/Makefile.am +++ b/src/util/Makefile.am | |||
@@ -483,7 +483,7 @@ test_crypto_random_LDADD = \ | |||
483 | test_crypto_rsa_SOURCES = \ | 483 | test_crypto_rsa_SOURCES = \ |
484 | test_crypto_rsa.c | 484 | test_crypto_rsa.c |
485 | test_crypto_rsa_LDADD = \ | 485 | test_crypto_rsa_LDADD = \ |
486 | libgnunetutil.la | 486 | libgnunetutil.la -lgcrypt |
487 | 487 | ||
488 | test_disk_SOURCES = \ | 488 | test_disk_SOURCES = \ |
489 | test_disk.c | 489 | test_disk.c |