[gnutls-devel] GnuTLS | lib/crypto-selftests.c: Add a selftest for PBKDF2 that complies with FIPS 140-3. (!1561)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Tue Mar 22 13:13:12 CET 2022



Pedro Monreal created a merge request: https://gitlab.com/gnutls/gnutls/-/merge_requests/1561

Project:Branches: pmgdeb/gnutls:fips-pbkdf2-kat to gnutls/gnutls:master
Author:   Pedro Monreal




lib/crypto-selftests.c: Add a selftest for PBKDF2 that complies with FIPS 140-3. The IG 10.3.A and SP800-132 requires some minimum parameters for the salt length, password length and iteration count.

The KAT for the PBKDF2 does not meet the requirements included in IG 10.3.A. Specifically, IG 10.3.A and SP800-132 requires some minimum parameters for the salt length, password length and iteration count. These parameters should be also used in the KAT:
  - salt must be at least 128 bits.
  - password should be at least 14 bytes, which represents the minimum approved key length used for the underlying HMAC (112 bits).
  - the iteration count must be >= 2

These are the values that the PBKDF KAT uses for this module:
  - GnuTLS (not OK)
    ! Plen=8 bytes
    ! Slen=32 bits
    - IterCount=1, 80000

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1561
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20220322/a3613ca4/attachment.html>


More information about the Gnutls-devel mailing list