Are these optimizations exposing the cryptographic code to some side channel attacks? For example, making the code not constant time?
It's one thing to make things faster but maybe not at the expense of security. On the other hand I don't know the specific application here, so maybe this is a perfectly reasonable tradeoff.
Are these optimizations exposing the cryptographic code to some side channel attacks? For example, making the code not constant time?
It's one thing to make things faster but maybe not at the expense of security. On the other hand I don't know the specific application here, so maybe this is a perfectly reasonable tradeoff.