Neil Madden
Neil Madden
I have recently been importing a subset of the Wycheproof test vectors into the test suite for our in-house JWT library. In doing so, the JWK key format has been...
The OpenJDK test setup code removes all security providers and then tries to re-add specific ones based on dynamic class loading. This no longer works with the latest JDKs because...
This is a bit of shameless self-promotion (well, my publisher asked me to), but I wonder if you would be willing to add a link to my book, API Security...
NB: this PR needs a bit of work to get it into a mergeable state but I wanted to put it up for your feedback. I have the go-ahead from...
According to https://tools.ietf.org/html/rfc7518#section-4.6.2 the ECDH-ES (and +AnnnKW variants) should use the "apu" and "apv" header parameter values (if present) in the key derivation process. Currently ecKeyGenerator.genKey() passes empty byte slices...
As mentioned in issue #162 it is good practice to include the hashes of all public keys in the key derivation process for ECDH. This can be done (once that...
If libsodium is installed then we should make use of it in preference to the pure-Java implementations. The native library is likely to have better constant-time guarantees and be more...
The [ECDH examples](https://github.com/diafygi/webcrypto-examples#ecdh---derivekey) output the raw bits from the ECDH secret value, either directly or into the importKey operation of AES-CTR. As I pointed out [on the WebCrypto spec page](https://github.com/w3c/webcrypto/issues/193)...
**Describe the bug:** Apologies, I couldn’t find a direct way to report documentation bugs. The [documentation](https://developers.google.com/tink/aead#choose_a_key_type) for the `AEAD` primitive states for AES-GCM-SIV: > AES128_GCM_SIV is nearly as fast as...
The [description of the StreamingAEAD primitive](https://developers.google.com/tink/streaming-aead) says that all implementations are OAE2-secure, but the implementation is of the STREAM construction that is only nOAE-secure (from section 7 “Weakening OAE2” of...