Project

General

Profile

Feature #12863

Make cbc_pad its own mode

Added by Jason King about 2 months ago. Updated 29 days ago.

Status:
New
Priority:
Normal
Assignee:
Category:
lib - userland libraries
Start date:
Due date:
% Done:

0%

Estimated time:
Difficulty:
Medium
Tags:
Gerrit CR:

Description

Currently, #11825 fixed the CBC_PAD implementation for AES. However, it would be useful to make cbc_pad its own mode (like cbc, ecb, etc) to allow other mechanisms (e.g. DES3 for those unfortunate enough to have to still use it) to also make use of it. Additionally we can improve the padding validation currently being done to be more resistant to timing and oracle attacks.


Related issues

Related to illumos gate - Feature #12864: Have pkcs11_softtoken's DES[3]_CBC_PAD mechanism use the cbc_pad modeNew

Actions

History

#1

Updated by Electric Monk 29 days ago

  • Gerrit CR set to 787
#2

Updated by Jason King 28 days ago

  • Related to Feature #12864: Have pkcs11_softtoken's DES[3]_CBC_PAD mechanism use the cbc_pad mode added

Also available in: Atom PDF