Alicja Kario
Alicja Kario
in TLS 1.3 the PSK session tickets are linked to PRF, not to the ciphersuite as a whole, thus it is possible to resume a session established with `TLS_AES_128_GCM_SHA256` using...
add script for testing `heartbeat` extension. make sure it tests `heartbleed` too blocked by https://github.com/tomato42/tlslite-ng/issues/58 Heartbleed was addressed by #592 but that's not complete test coverage for the extension or...
Create reproducer for CVE-2016-2107. https://www.openssl.org/news/secadv/20160503.txt
# New test script idea ## What TLS message this idea relates to? ClientHello, ClientKeyExchange ## What TLS extension this idea relates to? `ec_point_formats` ## What is the behaviour the...
https://instrumental.readthedocs.io/en/latest/intro.html https://bitbucket.org/desmaj/instrumental/issues/22/attributeerror-sourcecoderenderer-object Upside: better representation of test quality Downside: the project is unmaintained
TLS 1.3 removed support for EC point format negotiation, create test script to verify that `ec_point_formats` extension is ignored when negotiating TLS 1.3 - i.e. an invalid encoding, one that...
* [x] check if invalid points in the `key_share` extension in ClientHello are rejected by server (points that don't lie on the curve) * [ ] check if valid, correct...
Server's random value should be, as name suggests, random (tlsdate not withstanding). Other values like AES-GCM nonces should be counters. Allow the runner to collect such values, allow for subsequent...
# New test script idea ## What TLS message this idea relates to? ServerKeyExchange, CertificateVerify ## What TLS extension this idea relates to? `signature_algorithms` and `supported_groups` but only minimally ##...
# New test script idea ## What TLS message this idea relates to? CertificateVerify, CertificateRequest ## What TLS extension this idea relates to? none ## What is the behaviour the...