[erlang-patches] TLS: add PSK and SRP cipher suites

Henrik Nord henrik@REDACTED
Thu Oct 4 14:11:37 CEST 2012


Would you be so kind as to rebase this branch upon the latest 'master'

Thank you for your contribution!



On 09/26/2012 07:19 PM, Andreas Schultz wrote:
> Hi,
>
> I have implemented the more interesting parts of RFC 4279, RFC 5487
> and RFC 5054 (aka TLS PSK and SRP ciphers). The use and usefulness
> of those ciphers is rather limited, the one notable exception being
> the eID server protocol for German national identity cards (nPA).
>
> The test suite can only verify some PSK suites against openssl as
> currently no openssl version supports them all. There is patch
> that add some to openssl, but it has not been  incorporated into
> upstream. GNU-TLS implements some more (but not all) PSK suites
> and I have manually tested interoperability.
>
> Patch info:
>
> git fetch git://github.com/RoadRunnr/otp.git tls-psk-srp-suites
>
> https://github.com/RoadRunnr/otp/compare/master...tls-psk-srp-suites
> https://github.com/RoadRunnr/otp/compare/master...tls-psk-srp-suites.patch
>
> Regards
> Andreas

-- 
/Henrik Nord Erlang/OTP




More information about the erlang-patches mailing list