Alicja Kario
Alicja Kario
In RSA code we generate a blinding factor as simple integer mod n: https://github.com/tomato42/tlslite-ng/blob/9951ec1c769617247a80aa1cae661ec0edc68823/tlslite/utils/python_rsakey.py#L65-L70 we should verify that it's relatively prime to n (by calculating gcd() and checking if it...
The built-in `hmac` module in python performs the initialisation of the HMAC in pure python code. Implement an abstraction layer that uses m2crypto or pyca/cryptography as the concrete implementation. That...
https://github.com/warner/python-ecdsa/issues/128 is now fixed, so there is a clean interface for handling ECDH using python-ecdsa use it instead of the current code for ECDH we may need to do a...
Add support for X9.62 compressed ECC point format from prime field curves and characteristic 2 curves. related: #373
we select ciphersute (and thus hash) before checking PSKs, it may happen that the client selected PSK is not matching the PRF of the ciphersuite we selected, making the PSK...
Add a socket abstraction that provides in-order reliable delivery over UDP using QUIC transport layer. Needs to handle sending of ACKs, retransmissions, retries, multiplexing and demultiplexing (including handling of multiple...
For now the renegotiation is rejected on server side and simply unsupported in client side. When implementing we need to make sure that the certificates and encryption settings stay associated...
While we have added the HelloRequest object in #354, the renegotiation remains unsupported. Add support for server-initiated renegotiation in tlslite-ng. See also: #66
use m2crypto, pycryptodome, cryptography or some other native library to accelerate ECDSA and ECDHE operations some mechanism similar to the one used for RSA keys should be used to select...
Provide something like the `openssl speed` command that is able to show performance of symmetric ciphers, key exchange methods and signature verification/creation. Automatic comparison between available backends.