t_cose
t_cose copied to clipboard
laurencelundblade
Commercial quality COSE_Sign1 implementation in C for constrained environment. Works with MbtedTLS and OpenSSL Crypto.
Focusing on in preparation for interoperability testing.
The EC key generation, important and export APIs used are slated for deprecation. The Key wrap API is also.
This merge won't happen until 2.0 is in good shape. Probably late 2022 or maybe 2023. The PR is to be able to see the diff easily.
Mini sign creates a COSE_Sign1 with the algorithm fixed at compile time. It does NOT need a CBOR encoder. A ways to go for this to be complete commercial quality,...
In the dev branch, when T_COSE_OPT_DECODE_ONLY is set but T_COSE_OPT_VERIFY_ALL_SIGNATURES is clear, the verification fails when multiple signatures exist and one succeeds and another fails. The root cause seems to...
Has no external dependency except the hash and public key verify functions, not even dependency on QCBOR.
Would be great if someone added a crypto adaptation layer for PQ!
Right now the HPKE code calls PSA directly. This should instead go through new functions in the crypto adapter for DH and HKDF. That should also result in it working...
t_cose's convention is to use useful_buf to avoid explicit pointer math. HPKE code is not like that.
Metadata
Owner
Metadata
Commercial quality COSE_Sign1 implementation in C for constrained environment. Works with MbtedTLS and OpenSSL Crypto.