Dan Bernstein on the Infineon "high security" RSA bug: https://blog.cr.yp.to/20171105-infineon.html "This could even be a deliberate weakness with plausible deniability" "The authors notified Infineon at the beginning of February 2017. It seems that Infineon negotiated nine months of delay before the paper was posted. Did this much larger delay help security, or hurt security?"