2 matches found
CVE-2017-13091
CVE-2017-13091 concerns the IEEE P1735 standard’s handling of encryption for electronic-design IP. The issue arises from improperly specified padding in CBC mode, which can enable an EDA tool to function as a decryption oracle and, in the worst cases, allow recovery of the entire underlying plain...
US-CERT Warns of Crypto Bugs in IEEE Standard
Recent academic work focused on weak cryptographic protections in the implementation of the IEEE P1735 standard has been escalated to an alert published Friday by the Department of Homeland Security. DHS’ US-CERT warned the IEEE P1735 standard for encrypting electronic-design intellectual propert...