ECDSA sign/verify failed 50 out of 10000 when use libtomcrypt

76 views

Skip to first unread message

ybzha...@gmail.com

unread,

Aug 24, 2016, 1:03:46 AM8/24/16

to LibTom Projects

When doing ECDSA sign/verify test:
I generated 100 private & public key pairs, and 100 hash values.
Then sign 100 times with the same private & public key pair and hash value, to generate 100 signatures.
Totally 10000 signatures is generated.
Then verify the signature with the corresponding public key and hash value, 50 times out of 10000 verification will fail.

Can you help confirm if libtomcrypt problem?

the ECC curve is y^2 = x^3 - 3x + b, ECC length 384bits,
the math lib is gmp on cygwin.
If you need the test code, I can upload it.

The curve parameters is as follow:
{
size: 48,
name: "ECC-384",
prime: "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFFFFF0000000000000000FFFFFFFF",
B: "B3312FA7E23EE7E4988E056BE3F82D19181D9C6EFE8141120314088F5013875AC656398D8A2ED19D2A85C8EDD3EC2AEF",
order of the curve: "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFC7634D81F4372DDF581A0DB248B0A77AECEC196ACCC52973",
Gx: "AA87CA22BE8B05378EB1C71EF320AD746E1D3B628BA79B9859F741E082542A385502F25DBF55296C3A545E3872760AB7",
Gy: "3617DE4A96262C6F5D9E98BF9292DC29F8F41DBD289A147CE9DA3113B5F0B8C00A60B1CE1D7E819D7A431D7C90EA0E5F",
},

Steffen Jaeckel

unread,

Aug 25, 2016, 5:18:22 AM8/25/16

to lib...@googlegroups.com, ybzha...@gmail.com

Can you please provide the code, then it'll be easier to verify.

Thx,
Steffen

> --
> *** Please reply-to-all at all times ***
> *** (do not pretend to know who is subscribed and who is not) ***
> *** Please avoid top-posting. ***
> ---
> You received this message because you are subscribed to the Google
> Groups "LibTom Projects" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to libtom+un...@googlegroups.com
> <mailto:libtom+un...@googlegroups.com>.
> To post to this group, send email to lib...@googlegroups.com
> <mailto:lib...@googlegroups.com>.
> Visit this group at https://groups.google.com/group/libtom.
> For more options, visit https://groups.google.com/d/optout.

--
Steffen Jaeckel - s_ja...@gmx.de
GnuPG fingerprint: C438 6A23 7ED4 3A47 5541 B942 7B2C D0DD 4BCF F59B
My OTR key has changed on 30. Sept. 2015!
jabber: jae...@jabber.ccc.de F052DE29 4FA9A02D 44A794E5 AE5AC0FB C5865C64

Reply all

Reply to author

Forward

0 new messages