You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
oqs's Post-Quantum Signature scheme Rainbow level I parametersets broken
High severity
GitHub Reviewed
Published
Aug 18, 2022
to the GitHub Advisory Database
•
Updated Jan 7, 2023
Ward Beullens found a practical key-recovery attack against Rainbow.
The level I parametersets are removed from liboqs starting from version 0.7.2.
Find the scientific details in Breaking Rainbow Takes a Weekend on a Laptop.
This means all the oqs::sig::Algorithm::RainbowI* variants are insecure.
Ward Beullens found a practical key-recovery attack against Rainbow.
The level I parametersets are removed from liboqs starting from version
0.7.2
.Find the scientific details in Breaking Rainbow Takes a Weekend on a Laptop.
This means all the
oqs::sig::Algorithm::RainbowI*
variants are insecure.References