Anonymous wrote:
So while this is a very nice piece of work, and certainly of theoretical interest, I don't think it will modify the way in which people are advised to utilize cryptographic software, or cause companies like Netscape of RSADSI to shed any tears.
While an exploit of this attack against our software has not been demonstrated, and there is some debate about whether it will even work, we are taking it very seriously. We've been working with Paul to develop a fix, which we will implement even if the attack is never proven effective against our software. --Jeff PS - I think Paul was a bit surprised when Jim Barksdale pulled out his wallet and handed him 10 crisp $100 bills. :-) -- Jeff Weinstein - Electronic Munitions Specialist Netscape Communication Corporation jsw@netscape.com - http://home.netscape.com/people/jsw Any opinions expressed above are mine.