projects / oweals / openssl.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Fix the ECDSA timing attack mentioned in the paper at:
[oweals/openssl.git] / CHANGES
diff --git a/CHANGES b/CHANGES
index 656b6a2f8f5851edaa206f257be4ec4a2175db4f..38ea63ae7a0b8d7218fe08e4e3c124a4cc685342 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -4,6 +4,13 @@
 
  Changes between 1.0.0d and 1.0.1  [xx XXX xxxx]
 
+  *) Add protection against ECDSA timing attacks as mentioned in the paper
+     by Billy Bob Brumley and Nicola Tuveri, see:
+
+       http://eprint.iacr.org/2011/232.pdf
+
+     [Billy Bob Brumley and Nicola Tuveri]
+
   *) Add TLS v1.2 server support for client authentication. 
      [Steve Henson]
 
Unnamed repository; edit this file 'description' to name the repository.