Stephen Checkoway, Ruben Niederhagen, Adam Everspaugh, Matthew Green, Tanja Lange, Thomas Ristenpart, Daniel J. Bernstein, Jake Maskiewicz, Hovav Shacham, Matthew Fredrikson: On the Practical Exploitability of Dual EC in TLS Implementations. USENIX Security Symposium 2014: 319-335