You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@santuario.apache.org by Milan Tomic <mi...@setcce.org> on 2005/03/29 10:13:39 UTC
RE: C++ lib support for SHA-256, etc.?
Berin,
SHA-256, 384 & 512 are supported in Win2003 Server CryptoAPI. We should
support it in XSEC also. :)
Best regards,
Milan
> -----Original Message-----
> From: Berin Lautenbach [mailto:berin@wingsofhermes.org]
> Sent: Friday, February 18, 2005 10:08 AM
> To: security-dev@xml.apache.org
> Subject: Re: C++ lib support for SHA-256, etc.?
>
>
> Scott Cantor wrote:
>
> >>A thread on the W3C Dsig mailing list has begun to address the
> >>question of alternate algorithms (see
> >>http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2005JanMa
> >>r/0030.html), but has not gotten very far (yet). Maybe you should
> >>chime in.
> >
> >
> > Thanks for the pointer.
>
> I've been watching this since it started, and it hasn't really gone
> anywhere. So I've just given it a kick as I share the same concerns.
>
> BTW - I have compiled up OpenSSL 0.9.8-dev and managed to get
> it to link
> against the library (some minor changes to structure definitions that
> required some minor changes in the library). All the tests
> run fine, so
> I'm going to try to add 256/512 support over the weekend.
>
> If I'm feeling adventurous I might play with RIPEMD as well.
>
> I realise it's against the dev version of OpenSSL, but it's
> the best I
> can do without actually implementing the algs directly.
> (Which I can do
> if there is enough interest?)
>
> Cheers,
> Berin
>
RE: C++ lib support for SHA-256, etc.?
Posted by Milan Tomic <mi...@setcce.org>.
Hi,
I have found out from one Microsoft employee that Win2003 Server
CryptoAPI supports SHA2 (256, 384 & 512) for RSA Enhanced and AES
providers. There is no documentation on MSDN about this, yet. If I find
something I will post it here. There is documentation about SHA2 support
in CAPICOM:
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/seccryp
to/security/hasheddata_algorithm.asp
and CAPICOM is COM interface to the CryptoAPI. I have installed latest
PlatformSDK (Feb 2003, I think) and constants for SHA2 are provided next
to SHA1 in WinCrypt.h.
Best regards,
Milan
> -----Original Message-----
> From: Berin Lautenbach [mailto:berin@wingsofhermes.org]
> Sent: Tuesday, March 29, 2005 11:51 AM
> To: security-dev@xml.apache.org
> Subject: Re: C++ lib support for SHA-256, etc.?
>
>
> Milan Tomic wrote:
>
> > Berin,
> >
> > SHA-256, 384 & 512 are supported in Win2003 Server CryptoAPI. We
> > should support it in XSEC also. :)
>
> I did some work a few weeks back to get the basic support
> into the code
> (for OpenSSL 0.9.8), so it should be a matter of simply
> implementing the
> required actions into the WinCAPI digest classes.
>
> I must admit I hadn't realised it was in there - I went looking a few
> weeks back and couldn't find any references. Do you have a
> pointer to
> any doco?
>
> Cheers,
> Berin
>
Re: C++ lib support for SHA-256, etc.?
Posted by Berin Lautenbach <be...@wingsofhermes.org>.
Milan Tomic wrote:
> Berin,
>
> SHA-256, 384 & 512 are supported in Win2003 Server CryptoAPI. We should
> support it in XSEC also. :)
I did some work a few weeks back to get the basic support into the code
(for OpenSSL 0.9.8), so it should be a matter of simply implementing the
required actions into the WinCAPI digest classes.
I must admit I hadn't realised it was in there - I went looking a few
weeks back and couldn't find any references. Do you have a pointer to
any doco?
Cheers,
Berin