Author: Andres Home 2013-10-27 22:25:41
Published on: 2013-10-27T22:25:41+00:00
Developers using the Bitcoin SCI library have been advised to review how their software handles private key creation. The library had been using the Mersenne Twister PRNG or the GMP library's PRNG directly to generate private keys, which was somewhat resolved in the most recent version. However, only the createNewMiniKey() function has been updated. It is suggested that even those not using this library check their key generation functions if they do not interface directly with bitcoind. Affected keys have 32bits of entropy, potentially allowing GPU-based attacks on keys in the lower ranges. It is unknown how many keys have been created using either function and there are concerns over the issue.
Updated on: 2023-06-07T18:50:45.084905+00:00