Re: [tinydtls-dev] Secure Version of dtls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [tinydtls-dev] Secure Version of dtls_prng()

From: Olaf Bergmann <bergmann@xxxxxxx>
Date: Thu, 12 May 2016 09:49:26 +0200
Delivered-to: tinydtls-dev@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/tinydtls-dev>
List-help: <mailto:tinydtls-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/tinydtls-dev>, <mailto:tinydtls-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/tinydtls-dev>, <mailto:tinydtls-dev-request@eclipse.org?subject=unsubscribe>
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux)

Hi Frank,

Frank Gerlach <Frank_Gerlach@xxxxxxxx> writes:

> I will perform the code submission as you specified as soon as I have
> changed the code to use AES.

Great, thanks!

> My post was meant to give other tinydtls users an idea what they must
> do if they want to use it in production.

I see your comments as very useful input especially because many
security issues out there attribute to low entropy.

> I also read your comment at dtls_prng() and maybe you could make the
> comment somewhat stronger (e.g. "do not use this code in production").

Agreed.

Grüße
Olaf

References:
- [tinydtls-dev] Secure Version of dtls_prng()
  - From: Frank Gerlach
- Re: [tinydtls-dev] Secure Version of dtls_prng()
  - From: Olaf Bergmann
- Re: [tinydtls-dev] Secure Version of dtls_prng()
  - From: Frank Gerlach

Prev by Date: Re: [tinydtls-dev] Secure Version of dtls_prng()
Next by Date: Re: [tinydtls-dev] Question about current status/support with Contiki
Previous by thread: Re: [tinydtls-dev] Secure Version of dtls_prng()
Next by thread: [tinydtls-dev] Question about the DTLS handshake Hello Request in TinyDTLS
Index(es):
- Date
- Thread

Breadcrumbs