Javascript disabled? Like other modern websites, the IETF Datatracker relies on Javascript. Please enable Javascript for full functionality.

Implementation Guidance for the PKCS #1 RSA Cryptography Specification
draft-kario-rsa-guidance-02

Versions:

This document is an Internet-Draft (I-D). Anyone may submit an I-D to the IETF. This I-D is not endorsed by the IETF and has no formal standing in the IETF standards process.

Document	Type	Replaced Internet-Draft (individual) Expired & archived
	Author	Alicja Kario
	Last updated	2023-11-22
	Replaced by	draft-irtf-cfrg-rsa-guidance
	RFC stream	(None)
	Intended RFC status	(None)
	Formats	txt html xml htmlized bibtex bibxml
	Additional resources	GitHub Repository
Stream	Stream state	(No stream defined)
	Consensus boilerplate	Unknown
	RFC Editor Note	(None)
IESG	IESG state	Replaced by draft-irtf-cfrg-rsa-guidance
	Telechat date	(None)
	Responsible AD	(None)
	Send notices to	(None)

Email authors IPR References Referenced by Nits Search email archive

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

txt html xml htmlized bibtex bibxml

Abstract

This document specifies additions and amendments to RFC 8017. Specifically, it provides guidance to implementers of the standard to protect against side-channel attacks. It also deprecates the RSAES- PKCS-v1_5 encryption scheme, but provides an alternative depadding algorithm that protects against side-channel attacks raising from users of vulnerable APIs. The purpose of this specification is to increase security of RSA implementations.

Authors

Alicja Kario

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)

Implementation Guidance for the PKCS #1 RSA Cryptography Specification draft-kario-rsa-guidance-02

Implementation Guidance for the PKCS #1 RSA Cryptography Specification
draft-kario-rsa-guidance-02