Roman Štrobl

icon indicating a website link https://www.linkedin.com/in/romanstrobl

icon location Prague icon location Java Developer

Results 26 comments of Roman Štrobl

Catch runtime exceptions in low-level crypto

This issue will have to wait for the next release.

Catch runtime exceptions in low-level crypto

This issue will have to wait for the next release.

Private key imported from bytearray should be imported as unsigned

See how BC handles decoding of points: https://github.com/bcgit/bc-java/blob/master/core/src/main/java/org/bouncycastle/math/ec/ECCurve.java#L389 We use this BC method in method `convertBytesToPublicKey`. This is why we never had problems with sign byte in public keys.

Private key imported from bytearray should be imported as unsigned

You are right the problem is only when we use test vectors from mobile SDK, which is rare. The other question is compatibility with BC library which uses unsigned byte[]...

Add support for server-side ephemeral keys

I suggest we look at `ECDHE_ECDSA` in RFC 4492: https://tools.ietf.org/html/rfc4492, the TLS 1.2 specification defines a similar protocol for authentication of a public key.

Add support for server-side ephemeral keys

In particular, section 5.4 defines the data being signed by ECDSA: ![image](https://user-images.githubusercontent.com/26658588/81402034-eb475600-9130-11ea-920a-3b7d76fa47b6.png)

Add support for HMS

The issue will have to wait for the next release.

Improve auditing by adding user event log

I opened an issue to implement shared logic for auditing: https://github.com/wultra/lime-java-core/issues/34

Improve auditing by adding user event log

The issue will have to wait for the next release.

Verify Fp2ElementRef implementation

This issue has low priority because the `sqrt` method is used only in the reference implementation, which is not likely to be used for other than testing purposes.