lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <CAKv+Gu8cmGbJVCe4HJ0Jsyh4bB=X0psk02cFkq9e20ev9C-Opg@mail.gmail.com>
Date:   Mon, 5 Nov 2018 13:15:04 +0100
From:   Ard Biesheuvel <ard.biesheuvel@...aro.org>
To:     Gilad Ben-Yossef <gilad@...yossef.com>
Cc:     Herbert Xu <herbert@...dor.apana.org.au>,
        "David S. Miller" <davem@...emloft.net>,
        Ofir Drang <Ofir.Drang@....com>,
        Yael Chemla <Yael.Chemla@....com>,
        "open list:HARDWARE RANDOM NUMBER GENERATOR CORE" 
        <linux-crypto@...r.kernel.org>,
        Linux Kernel Mailing List <linux-kernel@...r.kernel.org>
Subject: Re: [PATCH] crypto: cts: document NIST standard status

On 5 November 2018 at 13:05, Gilad Ben-Yossef <gilad@...yossef.com> wrote:
> cts(cbc(aes)) as used in the kernel has been added to NIST
> standard as CBC-CS3. Document it as such.
>
> Signed-off-by: Gilad Ben-Yossef <gilad@...yossef.com>
> Suggested-by: Stephan Mueller <smueller@...onox.de>

Acked-by: Ard Biesheuvel <ard.biesheuvel@...aro.org>

> ---
>  crypto/Kconfig | 7 +++++--
>  1 file changed, 5 insertions(+), 2 deletions(-)
>
> diff --git a/crypto/Kconfig b/crypto/Kconfig
> index f7a235d..9176023 100644
> --- a/crypto/Kconfig
> +++ b/crypto/Kconfig
> @@ -430,11 +430,14 @@ config CRYPTO_CTS
>         help
>           CTS: Cipher Text Stealing
>           This is the Cipher Text Stealing mode as described by
> -         Section 8 of rfc2040 and referenced by rfc3962.
> -         (rfc3962 includes errata information in its Appendix A)
> +         Section 8 of rfc2040 and referenced by rfc3962
> +         (rfc3962 includes errata information in its Appendix A) or
> +         CBC-CS3 as defined by NIST in Sp800-38A addendum from Oct 2010.
>           This mode is required for Kerberos gss mechanism support
>           for AES encryption.
>
> +         See: https://csrc.nist.gov/publications/detail/sp/800-38a/addendum/final
> +
>  config CRYPTO_ECB
>         tristate "ECB support"
>         select CRYPTO_BLKCIPHER
> --
> 2.7.4
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ