Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Bitcoin Discussion
Re: [ANNOUNCE] Android key rotation
by
willphase
on 12/08/2013, 10:37:33 UTC
Quote from: piotr_n on August 12, 2013, 10:08:33 AM
Quote from: solex on August 12, 2013, 10:06:25 AM
Quote from: Xeno-Genesis on August 12, 2013, 10:04:56 AM
I discovered this flaw and made it known to Mike Hearn, Andreas Schildbach and Ben Reeves. It's been quite a week.

Well done!

The Daily Telegraph is claiming it was known about since January. Is this media disinformation?

Depends how you define "it".
http://www.nilsschneider.net/2013/01/28/recovering-bitcoin-private-keys.html


It's always been known that ECDSA with same random number allows private key discovery. It's been known since earlier this year that some hardware wallets were not using decent random numbers, but as far as I know it's only very recently that it was found that Android PRNG also suffered from this issue.

Will