tech-security archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[ben%links.org@localhost: OpenPGP:SDK v0.9 released]
http://openpgp.nominet.org.uk/cgi-bin/trac.cgi/wiki/V0.9
With thanks to Ben Laurie, Perry and the cryptography mailing list for
the heads-up, openpgp:sdk v0.9 has just been released. It's
BSD-licensed.
It would be really great if someone(TM) could put this into our base
src/external (or a new src/crypto/external?) repo - there's a weird
perl-based configure script, and it requires a new-ish openssl, but
the other requirements mostly seem to be for unit testing etc - with
reachover Makefiles.
There's a whole heap of things we could do with a native pgp library -
binary package signing is just one thing, misc binary provenance
verification, hooks into veriexec, kernel module signing, hooking into
mailers to say nothing of all the encryption possibilities.
Regards,
Alistair
--
Release 0.9
V0.9 delivers an OpenPGP library implementation (RSA and partial DSA),
conformant with RFC4880 "OpenPGP Message Format".
Available at Downloads
RSA Key Generation
* S2K Usage: ENCRYPTED_AND_HASHED
* S2K Specifier: SALTED
* Symmetric algorithm: CAST5
RSA Encryption
* Generates "Symmetrically Encrypted Integrity Protected Data" packets
(required by RFC)
* Hash: SHA1 (required by RFC)
* Symmetric Algorithm: CAST5 (hard-coded)
* Uses compression
* Optional ASCII armouring
RSA Decryption
* Symmetric Algorithm: CAST5, AES, AES256, 3DES
* Optional Compression: ZIP, ZLIB, BZIP2
* Optional ASCII armouring
RSA Signature
* Armoured, unarmoured or clearsigned
* Hash algorithm: SHA1
RSA Verification
* Armoured, unarmoured or clearsigned
* V3 or V4 signatures
* Hash algorithms: SHA1, SHA256, SHA384, SHA512, SHA224
DSA Signature
* Armoured, unarmoured or clearsigned
* Hash algorithms: SHA1
DSA Verification
* Armoured, unarmoured or clearsigned
* V3 or V4 signatures
* Hash algorithms: SHA1, SHA256, SHA384, SHA512, SHA224
Home |
Main Index |
Thread Index |
Old Index