Re: Considering SSL and Cryto libraries for LSB

On Thu, Jun 30, 2005, Dr. Stephen Henson wrote: Its certainly possible. There is an added complication in that some thought has to be given to future directions of development. For example the current RSA API lacks any easy way to pass additional parameters to some padding types. OAEP

Re: Considering SSL and Cryto libraries for LSB

Richard Levitte - VMS Whacker wrote: dank If so, perhaps that might provide a way forward: apps that need dank a stable interface can use the gnutls api (which openssl could dank provide as a wrapper); everyone else could use the openssl api dank (which gnutls seems to provide as a wrapper,

Re: Considering SSL and Cryto libraries for LSB

Dr. Stephen Henson wrote: On Wed, Jun 29, 2005, Dan Nuffer wrote: Dr. Stephen Henson wrote: This means that changing this in the short term is likely to cause widespread application breakage which wouldn't be too popular :-( Speaking as an application developer, I would willingly go

RE: Considering SSL and Cryto libraries for LSB

-Original Message- From: Geoff Thorpe [mailto:[EMAIL PROTECTED] On Behalf Of Geoff Thorpe Sent: Wednesday, June 29, 2005 8:15 PM To: openssl-dev@openssl.org Cc: Banginwar, Rajesh Subject: Re: Considering SSL and Cryto libraries for LSB On June 29, 2005 08:44 pm, Banginwar

RE: Considering SSL and Cryto libraries for LSB

understanding. Thanks, -Rajesh -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dan Nuffer Sent: Thursday, June 30, 2005 12:33 PM To: openssl-dev@openssl.org Subject: Re: Considering SSL and Cryto libraries for LSB Dr. Stephen Henson wrote: On Wed

RE: Considering SSL and Cryto libraries for LSB

:[EMAIL PROTECTED] On Behalf Of Dr. Stephen Henson Sent: Wednesday, June 29, 2005 1:01 PM To: openssl-dev@openssl.org Subject: Re: Considering SSL and Cryto libraries for LSB On Wed, Jun 29, 2005, Banginwar, Rajesh wrote: We recently started looking at some of Desktop specific libraries

Re: Considering SSL and Cryto libraries for LSB

On Wed, Jun 29, 2005, Banginwar, Rajesh wrote: As part of LSB standardization process, we look at the interfaces and corresponding data types and make it part of the specification. If the data types are expected to change and the interfaces do not hide them, then that part of the library may

Re: Considering SSL and Cryto libraries for LSB

Dr. Stephen Henson [EMAIL PROTECTED] Sent by: [EMAIL PROTECTED] 30/06/2005 08:14 AM Please respond to openssl-dev To openssl-dev@openssl.org cc Subject Re: Considering SSL and Cryto libraries for LSB On Wed, Jun 29, 2005, Banginwar, Rajesh wrote: As part of LSB

Re: Considering SSL and Cryto libraries for LSB

Dr. Stephen Henson wrote: This means that changing this in the short term is likely to cause widespread application breakage which wouldn't be too popular :-( Speaking as an application developer, I would willingly go through a one-time source code upgrade to achieve binary compatiblity.

Re: Considering SSL and Cryto libraries for LSB

On Thu, Jun 30, 2005, Peter Waltenberg wrote: IBM has already done this in creating it's FIPS certified crypto. code which is layered on top of OpenSSL. In our case we can guarantee that IBM code only uses our restricted subset of the OpenSSL API. Unfortunately you'll need to support the

Re: Considering SSL and Cryto libraries for LSB

On Wed, Jun 29, 2005, Dan Nuffer wrote: Dr. Stephen Henson wrote: This means that changing this in the short term is likely to cause widespread application breakage which wouldn't be too popular :-( Speaking as an application developer, I would willingly go through a one-time source

Re: Considering SSL and Cryto libraries for LSB

On June 29, 2005 05:50 pm, Banginwar, Rajesh wrote: As part of LSB standardization process, we look at the interfaces and corresponding data types and make it part of the specification. If the data types are expected to change and the interfaces do not hide them, then that part of the library

RE: Considering SSL and Cryto libraries for LSB

-Original Message- From: Geoff Thorpe [mailto:[EMAIL PROTECTED] On Behalf Of Geoff Thorpe Sent: Wednesday, June 29, 2005 5:45 PM To: openssl-dev@openssl.org Cc: Banginwar, Rajesh Subject: Re: Considering SSL and Cryto libraries for LSB On June 29, 2005 05:50 pm, Banginwar

Re: Considering SSL and Cryto libraries for LSB

On June 29, 2005 08:44 pm, Banginwar, Rajesh wrote: So far from the preliminary analysis that we have done (by looking at some of the OSS applications) we see both libssl and libcrypto being used. E.g. from libcrypto I find functions in EVP, RSA, MD5 and DSA sets more commonly used than

Re: Considering SSL and Cryto libraries for LSB

In message [EMAIL PROTECTED] on Wed, 29 Jun 2005 17:44:38 -0700, Banginwar, Rajesh [EMAIL PROTECTED] said: rajesh.banginwar Do you or anyone on this project have data rajesh.banginwar suggesting which APIs are candidates for LSB rajesh.banginwar inclusion both from demand and stability point of

Re: Considering SSL and Cryto libraries for LSB

Richard Levitte - VMS Whacker wrote: Quite honestly, even though I'm quite an enthusiastic OpenSSL developer for years and have been for years (since it started, really), I can't really recommend OpenSSL as an LSB candidate from that point of view, as it stands today. Every major upgrade (which

RE: Considering SSL and Cryto libraries for LSB

What is the benefit of adding parts of OpenSSL to the LSB now? -- Rich Salz Chief Security Architect DataPower Technology http://www.datapower.com XS40 XML Security Gateway http://www.datapower.com/products/xs40.html

Re: Considering SSL and Cryto libraries for LSB

In message [EMAIL PROTECTED] on Wed, 29 Jun 2005 22:05:07 -0700, Dan Kegel [EMAIL PROTECTED] said: dank http://www.gnu.org/software/gnutls/ dank exposes two APIs: the OpenSSL api (I gather?), and its own. About the OpenSSL API, this page answers part of the question.