On 02/13/2013 02:51 PM, Niels Möller wrote:
nisse@lysator.liu.se (Niels Möller) writes:
I'd like to post the interface I use for low-level ecc functions.
And here's the current interface for ECDSA functions. Low-level functions with similar conventions as the low-level ecc functions. And high-level functions using mpz_t for arguments, and using the same allocation function as GMP for storage.
Hello Niels, I've checked the high level functions and they seem fine. As far as I am concerned I think they can easily update the current gnutls code.
About the naming you use ecdsa_private_key and public_key. Note that this is the same key for static ECDH, and I think MQV.
If there is a function to do the DH multiplication k*(ecdsa_public_key) I think the gnutls could be tested with that interface, if I get some time to do that.
But for ecdsa, do we need any functions like that? I guess, for
I don't know. I wouldn't probably use them, but others may.
which take a hashing context as argument. Which hash functions are
people using for ecdsa with the various curves? RFC 4754 (IKE and IKEv2 Authentication Using ECDSA) defines: ECDSA-256 256-bit random ECP group SHA-256 ECDSA-384 384-bit random ECP group SHA-384
ECDSA-521 521-bit random ECP group SHA-512
As far as I know these are the only allowed by the DSS standard (I was under the impression that SHA-224 was also allowed).
regards, Nikos