[guardian-dev] AES-GCM mode not in pycrypto
Hans of Guardian
hans at guardianproject.info
Fri Apr 12 14:37:36 EDT 2013
On Apr 12, 2013, at 9:28 AM, Abel Luck wrote:
> Hans-Christoph Steiner:
>>
>> Hey Abel or any other interested party:
>>
>> It turns out that AES-GCM is not implemented in pycrypto tho other modes are.
>> Anyone know how much work it would be to implement? My guess is that its
>> non-trivial since it hasn't been done yet.
>>
>> https://bugs.launchpad.net/pycrypto/+bug/899817
>>
>
> Apparently pycrypto doesn't offer any authenticated encryption modes.
>
> In that case we should combine an encryption primitive with a MAC
> primitive. AES CBC + HMAC-SHA256 ?
For now, I'm just going to generate the ACM GCM with openssl since java can handle it. This is meant to be a stop gap solution, so its not worth hashing over it so much as long as the current plan is reasonably secure, which I think it is.
.hc
More information about the Guardian-dev
mailing list