Hi,
I have something that seems to work at
https://github.com/BillBennett/californium.scandium
*This is not ready for production* - I'm posting it to the list in
case it is useful to others at the upcoming OMA-LWM2M test fest. I
will continue working on it though.
I am NOT experienced at crypto. I believe that the padding oracle is
prevented by doing the check after the HMAC verification but there
are probably other issues.
I have not tried SHA-1 stuff and I don't think the TLS1 PRF is
implemented. I'll probably remove it, but
TLS_PSK_WITH_AES_128_CBC_SHA may be useful as a fallback.
Thanks,
Bill
On 15/01/15 20:24, Julien Vermillard
wrote:
Hi Bill,
I have no plans for CBC mode.
The only issue I have with non AHEAD cipher like CBC is
padding oracle attacks:
You need to be sure we are not
affected.
Feel free to implement it, a lot of people use it and a few
device have hardware acceleration for it.
So it would be a great addition.
Julien
On Thu Jan 15 2015 at 00:19:34 Bill
Bennett < william.bennett@xxxxxxxxxxxxxxxxxxx>
wrote:
Hi,
Just wondering if there are plans for
TLS_PSK_WITH_AES_128_CBC_SHA256?
I'm willing to have a go.
Thanks,
Bill
______________________________________________________________________
This communication contains information which may be
confidential or privileged. The information is intended solely
for the use of the individual or entity named above. If you
are not the intended recipient, be aware that any disclosure,
copying, distribution or use of the contents of this
information is prohibited. If you have received this
communication in error, please notify me by telephone
immediately.
______________________________________________________________________
_______________________________________________
cf-dev mailing list
cf-dev@xxxxxxxxxxx
To change your delivery options, retrieve your password, or
unsubscribe from this list, visit
https://dev.eclipse.org/mailman/listinfo/cf-dev
|
