OpenSSL leaks ECDSA private key through a remote timing attack Vulnerability Note VU#536044 Original Release Date: 2011-05-17 | Last Revised: 2011-06-01 The OpenSSL ladder implementation for scalar multiplication of points on elliptic curves over binary fields is susceptible to a timing attack vulnerability. This vulnerability can be used to steal the private key of a TLS server that authenticates