CRYPTO: Luca De Feo (IBM): On the (in)security of ElGamal in OpenPGP

Bâtiment Descartes, salle 301

Do you think you know ElGamal encryption? Think twice. We uncover vulnerabilities in the OpenPGP ecosystem stemming from confusion about the definition of ElGamal encryption (and the lack of an unequivocable standard). The first vulnerability leads to practical plaintext recovery