[Opendnssec-develop] Fwd: GOST support
Rickard Bellgrim
rickard.bellgrim at iis.se
Mon Nov 9 14:40:33 UTC 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Here are some info from the Botan developer:
> > I will be starting with version 2 of SoftHSM in the beginning of
> > next year. My question is regarding your view on GOST support in
> > Botan. Is there any possibility to have this within 5 months?
>
> This definitely seems possible. The GOST block cipher and hash
> function are already implemented in 1.8, so the remaining piece is the
> signature algorithm. There is an i-d that partially specifies it
> (draft-dolmatov-cryptocom-gost34102001-05.txt) though it is missing
> the method of key generation; presumably I can reverse engineer that
> portion from the GOST 34.10 code in OpenSSL, which was also written by
> Cryptocom IIRC.
>
> I'm not certain if it will be viable to introduce 34.10-2001 support
> in the existing 1.8 stable version; for instance if adding support for
> it requires changing something in a way that would break the ABI. So
> it may be the case that it would only be available in the 1.9
> development releases. On the other hand it may be reasonable to
> release a new stable tree as 1.10 around April-May of next year
> anyway.
>
> -Jack
-----BEGIN PGP SIGNATURE-----
Version: 9.8.3 (Build 4028)
Charset: utf-8
wsBVAwUBSvgp4eCjgaNTdVjaAQjuBwgAnMGQo95OMDhoEdSVhnZX5jPbFhi2QV8m
h6AxeYeoPQc5zKS19VkY1YN+HysPdmit1+YoY68pAt855SHP34ZzfdMmGGZDvorF
LI1Cok1MZUh11dBOvN7op/9kdi5wJTYQI8hpGA9lbCt8YTJZ96cb6BRI+nDe4YED
ugcOvyycTU592dpcck3FPxrk70PdxzPK5wDD6QDc/GHYL+69sMhK5Sjgu+eHI5Vo
b0HMRyadtSu46/hqzwkFoTHXXb741no85SwoLqTh8zSdRNVD2BWUzWaWU/vN4o4S
GLqB38uM+tGtxZ86M7n/ka/4al69qVmRNb9sir93tt2+6QGgHfElVQ==
=eeYC
-----END PGP SIGNATURE-----
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20091109/9f5bc339/attachment.htm>
More information about the Opendnssec-develop
mailing list