Re: [PATCH] crypto: mark cts(cbc(aes)) as FIPS allowed
Am Sonntag, 4. November 2018, 11:05:24 CET schrieb Gilad Ben-Yossef: Hi Gilad, > As per Sp800-38A addendum from Oct 2010[1], cts(cbc(aes)) is > allowed as a FIPS mode algorithm. Mark it as such. > > [1] https://csrc.nist.gov/publications/detail/sp/800-38a/addendum/final There are several types of CTS approaches. Only three of those are listed in the SP800-38A addendum. The source code only refers to some RFCs. Did you check whether the CTS implementation matches one or more of the types listed in the addendum? If yes, may I suggest to add a small statement in the code noting this fact? Thanks a lot. Ciao Stephan
Re: [PATCH] crypto: mark cts(cbc(aes)) as FIPS allowed
Am Sonntag, 4. November 2018, 11:05:24 CET schrieb Gilad Ben-Yossef: Hi Gilad, > As per Sp800-38A addendum from Oct 2010[1], cts(cbc(aes)) is > allowed as a FIPS mode algorithm. Mark it as such. > > [1] https://csrc.nist.gov/publications/detail/sp/800-38a/addendum/final There are several types of CTS approaches. Only three of those are listed in the SP800-38A addendum. The source code only refers to some RFCs. Did you check whether the CTS implementation matches one or more of the types listed in the addendum? If yes, may I suggest to add a small statement in the code noting this fact? Thanks a lot. Ciao Stephan
