for Nettle.
https://github.com/google/wycheproof
https://github.com/google/wycheproof/tree/master/java/com/google/security/wycheproof/testcases
Has anybody looked at Wycheproof for testing Nettle?
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning
and is used in
massively deployed protocols.
But hey, It¨s just suggestions. I intended to provide code, but only if
there is an interest for it.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
=====
han Keccak.
There is also versions of Blake2 suitable for embedded systems.
https://blake2.net/
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
====
Joachim Strömbergson S
not a good way to do it.
Sorry, my bad. I didn't imply that the constraint had anything to do
with Nettle, just my personal problem with it. I am involved in open
source hardware projects where these issues appears.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
-BEGIN PGP SIGNATURE
?
uint8_t compare_digests(uint8_t *digest0, uint8_t *digest1, uint8_t
*DIGEST_SIZE);
or
uint8_t compare_md5_digests(uint8_t *digest0, uint8_t *digest1);
Or something like that. for MD5, SHA-digests, UMAC etc.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning
bit faster than the brain.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
a silent version om memcmp.
I'm actually gonna check - their fork of OpenSSL should probably be
using something like that.
Nikos - What do you do in GnuTLS?
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
-BEGIN PGP SIGNATURE
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Aloha!
Niels Möller wrote:
1. For the sha512.c copyright header, should it be Copyright (C)
2014 Joachim Strömbergson, or Secworks AB, or something else?
Just add me (Joachim) as coauthor if that is ok with you. It is mainly
your code.
2. Test
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Aloha!
Joachim Strömbergson wrote:
I can take a shot at the code changes and post patches.
It wasn't really that hard. Patches will follow in two mails.
I have not updated the H0 generation scripts used to verify the values
(which you have done
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Aloha!
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Aloha!
And here is the patch for sha512.c in unified diff format. Hopfully the
attachment will also be signed now. ;-)
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning
- basically add more variants of the H0-constants and
then truncate. The benefit for users would be better performance on 64
bit CPUs compared to SHA-256 and SHA-224.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning
literature.
DJB use the term nonce in both the sasa20 and chacha specs so I think
nonce is the proper term to use. Esp since that seems to be the commonly
used term.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning
tricks with the shifts. xmm-5 should be relevant.
http://cr.yp.to/chacha.html
Ah, and chacha seems to be about 15% faster than salsa20
Which seems to match what DJB claims in the paper. Good.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning
vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
bit keys.
I tried to look at the report cards from SSL Labs to see how many
actually includes them in the handshake. Judging by somewhat old stats
from Qyalys quite a few servers support RC2 with 40 bit key as well as
128 bit key.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i
can be used. Don't know how
common it is though.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
- if it
is 4 days, 4 weeks of 4 months to do the release.)
(3) I'll try and work on the chacha support files the next weeks.
(4) I'm prepared to do the darwin testing on OSX 10.9.x
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning
, thanks!
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Aloha!
Niels Möller wrote:
Joachim Strömbergson joac...@secworks.se writes:
At least not having one indirection in documentation. I think the
bootstrap should be mentioned directly in a README, INSTALL etc
file directly in the reop.
I did
using: LLVM version 3.3svn, from Apple Clang 5.0 (build
500.2.79)
Anybody succeeding and building nettle on OSX and if so how. Being able
to use the optimized assembler versions would also be good.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Aloha!
Niels Möller wrote:
Joachim Strömbergson joac...@secworks.se writes:
Shouldn't INSTALL mention this?
INSTALL is the generic GNU installation instructions, and intended
for the user who has downloaded a release tarball. I'd prefer
://github.com/secworks/nettle/tree/master/chacha
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
. Since gcc in Xcode is actually a wrapper around clang/llvw.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
: x86_64-apple-darwin13.0.0
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
the configuration, you'll need to do
make distclean inbetween, otherwise the new configuration won't
take effect properly. This sounds like the issue you're running into
when trying to use --disable-assembler.
Yes, yes, yes! Thanks. It now builds.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson
, lets try and stay focused on security here - everybody knows
that you always should two rounds of ROT13. Please add rot13r2 patch.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim
, support for the NIST curves might be needed.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
-BEGIN PGP
substantial
performance if they could use AES-NI when available?
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
Joachim Strömbergson Secworks AB joac...@secworks.se
32 matches
Mail list logo
