[Resource Topic] 2020/384: A ”Final” Security Bug

Welcome to the resource topic for 2020/384

Title:
A ”Final” Security Bug

Authors: Nguyen Thoi Minh Quan

Abstract:

This article discusses a fixed critical security bug in Google Tink’s Ed25519 Java implementation. The bug allows remote attackers to extract the private key with only two Ed25519 signatures. The vulnerability comes from the misunderstanding of what “final” in Java programming language means. The bug was discovered during security review before Google Tink was officially released. It reinforces the challenge in writing safe cryptographic code and the importance of the security review process even for the code written by professional cryptographers.

ePrint: https://eprint.iacr.org/2020/384

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .