[gnutls-devel] GnuTLS | nettle: check validity of (EC)DH shared secret before export (!1299)
Development of GNU's TLS library
gnutls-devel at lists.gnutls.org
Fri Jul 10 10:32:32 CEST 2020
Stephan Mueller commented:
For both changes, I am good.
However, we analyzed SP800-56A rev3 now to the full extent and would need to require the following checks:
- Shared secret generation: section 22.214.171.124 (FFC) and 126.96.36.199 (ECC) - this patch covers this check
- receipt of remote public key following section 188.8.131.52.2:
. if PQG are RFC3526 / RFC7919 primes, then apply (at least) the partial validation from section 184.108.40.206.2
. otherwise perform the full validation compliant to section 220.127.116.11.1
* ECC: perform partial validation compliant to 18.104.22.168.4
- generation of local key pair following section 22.214.171.124.3:
. perform the full validation compliant to section 126.96.36.199.1
. perform a full validation compliant to section 188.8.131.52.3
Sorry for the late note.
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1299#note_377102502
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Gnutls-devel