10 Feb
2012
10 Feb
'12
4:23 p.m.
The new Intel AES instructions fix the Bernstein attack. The problem was actually noticed by [?] before Rijndael was adopted as AES, but didn't come to the attention of crypto folks. Bernstein's contribution was to carry out a simplified version of the attack, showing it was a real problem. Rich ---- Quoting Warren Smith <warren.wds@gmail.com>: <clip>
My paper however also cited a "(cheating) break" of AES by Daniel J. Bernstein which I think is very serious practically speaking.