This paper explains the RowHammer Attack is a feasible fault injection attack that can be performed remotely. ECDSA and EdDSA are both vulnerable. The paper recommends using XEdDSA–which is resistant to RowHammer and is secure even when one uses a faulty RNG to generate the nonce.
I thought this paper was worth sharing because it is hard to find a digital signature algorithm that can be resistant to timing attacks and the RowHammer Attack at once.
What I thought was most interesting is that XEdDSA was invented by Trevor Perrin–a notable cryptographer from Signal.
submitted by /u/fosres
[link] [comments]
