Prevent Bleichenbacher by adjusting Padding

Random

6/11/23, 9:57 AM

I got the following question and I really don‘t know how to answer them. My I ask you for your input?

Do you think, that the following adjusted Padding will prevent the classic Bleichenbacher attack

2Byte Random prefix | Random padding bytes unequal 0xff | 0xff | PremasterSecret

In theory I would agree (at least for the classic Bleichenbacher), but wouldn‘t that be to easy? And what other problems could come with this coding?

Thanks in advance

0 + 0

padding

padding-oracle

fgrieu

6/11/23, 11:14 AM

The devil lies in the details. How would the `2Byte Random prefix` and first bytes of the `Random padding bytes unequal 0xff` be chosen to insure that the padded message is less than the public modulus? Or is that chosen with 0xffffff in the high-order 24 bits, which would ensure that?

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Prevent Bleichenbacher by adjusting Padding

TH: ป้องกัน Bleichenbacher โดยการปรับ Padding

RO: Preveniți Bleichenbacher prin ajustarea căptușelii

RU: Предотвратите Блейхенбахера, отрегулировав заполнение

VI: Ngăn chặn Bleichenbacher bằng cách điều chỉnh Padding

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.