[openssl-dev] New crypto algorithms in openSSL engine
Matt Caswell
matt at openssl.org
Mon Oct 23 11:57:47 UTC 2017
On 23/10/17 12:51, APOB83 wrote:
> Hi,
>
> I've noticed the following statement in another thread here...
>
> *May I suggest you have a look at the GOST engine? It does implement
> the algorithm entirely in the engine. The only things added in the
> OpenSSL code are the OIDs (not strictly necessary) and the TLS
> ciphersuites (I don't think that can be done dynamically at all, at
> least yet). *
>
> This suggests to me that I might be able to build a new engine with the new
> crypto algorithms and then in the OpenSSL code, add the code necessary to
> build the new ciphersuites. Am I correct in how I'm reading this?
This is what was done for the GOST ciphersuites so, yes, it is
theoretically possible. However I think we are unlikely to add
significant code to libssl unless there is a reasonably sized user base.
Matt
More information about the openssl-dev
mailing list