SlideShare ist ein Scribd-Unternehmen logo

OpenPGP vs X.509 and Supporting GOST Algorithms

D
Dmitry Baryshkov

This document discusses supporting GOST algorithms in OpenPGP. It begins by providing background on OpenPGP and its history, standards, and lack of known vulnerabilities. It then discusses plans to add support for GOST symmetric ciphers, message digests, and public key algorithms to the libgcrypt library used in GnuPG. The implementation status provides details on initial algorithm implementations, testing via RFC 4490, and preparing an Internet-Draft for discussion. It concludes by noting some remaining open discussion points around public key algorithms.

SoftwareTechnologieBildung
1 von 6
Downloaden Sie, um offline zu lesen
mentor.com/embedded Android is a trademark of Google Inc. Use of this trademark is subject to Google Permissions. Linux is the registered trademark of Linus Torvalds in the U.S. and other countries. Qt is a registered trade mark of Digia Plc and/or its subsidiaries. All other trademarks mentioned in this document are trademarks of Dmitry Eremin Solenikov OpenPGP and Russian Cryptography
OpenPGP vs X.509 Both are public key infrastructures. Both provide a way to bind a public key to a designated person. ● PKIX ● Absolute trust to preselected CAs by participants ● Hard to cope with CA incidents ● OpenPGP ● WoT provides transitive trust relationship ● It is easy to deal with misbehaving parties 2/6
OpenPGP history ● In 1991 Phil Zimmerman published PGP (Pretty Good Privacy) version 1.0 for secure messaging and file transfer through BBS ● OpenPGP IETF Working Group was formed in 1997 ● RFC 2440 – first formal specification was published in November 1998 ● Replaced by RFC 4880 in November 2007 ● Two optional updates are published (incl. NIST ECC) ● No known vulnerabilities 3/6
Supporting GOST algorighms ● Symmetric cipher ● This part is postponed due to several open issues ● Message digests ● Easy part ● Public Key algorithms ● Several decision points, but easy otherwise ● KDF ● KeyWrap ● VKO/ECDH 4/6
Implementation Status ● Initial algorithms implementation for libgcrypt – GnuPG cryptographic core library ● Proving implementation correctness by implementing RFC 4490 (GOST CMS) in GPG/SM ● Preparing draft of an Internet-Draft (covering signatures and PK) for wider community discussion ● There are still some open discussion points in Public Key algorithms 5/6
Questions? Thank you! 6/6

Empfohlen

DEF CON 27 - ROGER DINGLEDINE -tor censorship arms race
DEF CON 27 - ROGER DINGLEDINE -tor censorship arms raceDEF CON 27 - ROGER DINGLEDINE -tor censorship arms race
DEF CON 27 - ROGER DINGLEDINE -tor censorship arms raceFelipe Prado
 
Dcvs
DcvsDcvs
Dcvsgianluigi calcaterra
 
Marrying a Penguin: Logging in and mounting encrypted partitions using a ring...
Marrying a Penguin: Logging in and mounting encrypted partitions using a ring...Marrying a Penguin: Logging in and mounting encrypted partitions using a ring...
Marrying a Penguin: Logging in and mounting encrypted partitions using a ring...benwhorwood
 
Upstreaming 101 - SFO17-TR02
Upstreaming 101 - SFO17-TR02Upstreaming 101 - SFO17-TR02
Upstreaming 101 - SFO17-TR02Linaro
 
Lt2013 uefisb.talk
Lt2013 uefisb.talkLt2013 uefisb.talk
Lt2013 uefisb.talkUdo Seidel
 
LSK 13.07
LSK 13.07LSK 13.07
LSK 13.07Mark Brown
 
BKK16-411 Devicetree Specification
BKK16-411 Devicetree SpecificationBKK16-411 Devicetree Specification
BKK16-411 Devicetree SpecificationLinaro
 
Anatomy of Lightning Talks at Rakuten Technology Conference 2014, After Confe...
Anatomy of Lightning Talks at Rakuten Technology Conference 2014, After Confe...Anatomy of Lightning Talks at Rakuten Technology Conference 2014, After Confe...
Anatomy of Lightning Talks at Rakuten Technology Conference 2014, After Confe...Hiro Yoshioka
 

Empfohlen

DEF CON 27 - ROGER DINGLEDINE -tor censorship arms race
DEF CON 27 - ROGER DINGLEDINE -tor censorship arms raceDEF CON 27 - ROGER DINGLEDINE -tor censorship arms race
DEF CON 27 - ROGER DINGLEDINE -tor censorship arms raceFelipe Prado
 
Dcvs
DcvsDcvs
Dcvsgianluigi calcaterra
 
Marrying a Penguin: Logging in and mounting encrypted partitions using a ring...
Marrying a Penguin: Logging in and mounting encrypted partitions using a ring...Marrying a Penguin: Logging in and mounting encrypted partitions using a ring...
Marrying a Penguin: Logging in and mounting encrypted partitions using a ring...benwhorwood
 
Upstreaming 101 - SFO17-TR02
Upstreaming 101 - SFO17-TR02Upstreaming 101 - SFO17-TR02
Upstreaming 101 - SFO17-TR02Linaro
 
Lt2013 uefisb.talk
Lt2013 uefisb.talkLt2013 uefisb.talk
Lt2013 uefisb.talkUdo Seidel
 
LSK 13.07
LSK 13.07LSK 13.07
LSK 13.07Mark Brown
 
BKK16-411 Devicetree Specification
BKK16-411 Devicetree SpecificationBKK16-411 Devicetree Specification
BKK16-411 Devicetree SpecificationLinaro
 
Anatomy of Lightning Talks at Rakuten Technology Conference 2014, After Confe...
Anatomy of Lightning Talks at Rakuten Technology Conference 2014, After Confe...Anatomy of Lightning Talks at Rakuten Technology Conference 2014, After Confe...
Anatomy of Lightning Talks at Rakuten Technology Conference 2014, After Confe...Hiro Yoshioka
 
Huawei smart grid rus
Huawei smart grid rusHuawei smart grid rus
Huawei smart grid rusNick Turunov
 
Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...
Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...
Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...Advanced monitoring
 
Cybercrime in Russia: Trends and Issues
Cybercrime in Russia: Trends and IssuesCybercrime in Russia: Trends and Issues
Cybercrime in Russia: Trends and IssuesAlex Matrosov
 
Вебинар по криптомаршрутизаторам, 14.12.2016
Вебинар по криптомаршрутизаторам, 14.12.2016Вебинар по криптомаршрутизаторам, 14.12.2016
Вебинар по криптомаршрутизаторам, 14.12.2016S-Terra CSP
 
Crypto regulations in Russia
Crypto regulations in RussiaCrypto regulations in Russia
Crypto regulations in RussiaAleksey Lukatskiy
 
Sectores parroquilaes
Sectores parroquilaesSectores parroquilaes
Sectores parroquilaesEver Cifuentes
 
Official Diet
Official DietOfficial Diet
Official DietDavid J Cohen
 
Hackware v0.4
Hackware v0.4Hackware v0.4
Hackware v0.4Kenneth Lim
 
Jonesboro family care home
Jonesboro family care homeJonesboro family care home
Jonesboro family care homecrazycharles
 
LocK
LocKLocK
LocKАндрей Булавинов
 
Mobile Business Budgeting Survey from Sage
Mobile Business Budgeting Survey from SageMobile Business Budgeting Survey from Sage
Mobile Business Budgeting Survey from SageCLOUD9RT
 
You Can Work Fewer Hours
You Can Work Fewer HoursYou Can Work Fewer Hours
You Can Work Fewer HoursTeachU
 
Business Development Analysis Do Customers Matter
Business Development Analysis Do Customers MatterBusiness Development Analysis Do Customers Matter
Business Development Analysis Do Customers Matterkenfcharles
 
Pseudosci v2 edit_1_0125_(1)
Pseudosci v2 edit_1_0125_(1)Pseudosci v2 edit_1_0125_(1)
Pseudosci v2 edit_1_0125_(1)Thitipong Wongchan
 
ΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥ
ΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥ
ΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥThanasis Tsepetzis
 
Plantronics Audio 355
Plantronics Audio 355Plantronics Audio 355
Plantronics Audio 355Afraz Mirza
 
Marketing Introduction for MLC Corporate Super Specialist Network members
Marketing Introduction for MLC Corporate Super Specialist Network membersMarketing Introduction for MLC Corporate Super Specialist Network members
Marketing Introduction for MLC Corporate Super Specialist Network membersAlisdair Blackman
 
New teanabrochure combine
New teanabrochure combineNew teanabrochure combine
New teanabrochure combineThitipong Wongchan
 
Porque tú:
Porque tú:Porque tú:
Porque tú:Misha Prado
 
Paola_Xochicale
Paola_XochicalePaola_Xochicale
Paola_XochicalePaola Xochicale
 
Kali Linux
Kali LinuxKali Linux
Kali LinuxShubham Agrawal
 
Pyongyang Fortress
Pyongyang FortressPyongyang Fortress
Pyongyang FortressMayank Dhiman
 

Weitere ähnliche Inhalte

Andere mochten auch

Huawei smart grid rus
Huawei smart grid rusHuawei smart grid rus
Huawei smart grid rusNick Turunov
 
Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...
Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...
Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...Advanced monitoring
 
Cybercrime in Russia: Trends and Issues
Cybercrime in Russia: Trends and IssuesCybercrime in Russia: Trends and Issues
Cybercrime in Russia: Trends and IssuesAlex Matrosov
 
Вебинар по криптомаршрутизаторам, 14.12.2016
Вебинар по криптомаршрутизаторам, 14.12.2016Вебинар по криптомаршрутизаторам, 14.12.2016
Вебинар по криптомаршрутизаторам, 14.12.2016S-Terra CSP
 
Crypto regulations in Russia
Crypto regulations in RussiaCrypto regulations in Russia
Crypto regulations in RussiaAleksey Lukatskiy
 
Jonesboro family care home
Jonesboro family care homeJonesboro family care home
Jonesboro family care homecrazycharles
 
Mobile Business Budgeting Survey from Sage
Mobile Business Budgeting Survey from SageMobile Business Budgeting Survey from Sage
Mobile Business Budgeting Survey from SageCLOUD9RT
 
You Can Work Fewer Hours
You Can Work Fewer HoursYou Can Work Fewer Hours
You Can Work Fewer HoursTeachU
 
Business Development Analysis Do Customers Matter
Business Development Analysis Do Customers MatterBusiness Development Analysis Do Customers Matter
Business Development Analysis Do Customers Matterkenfcharles
 
ΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥ
ΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥ
ΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥThanasis Tsepetzis
 
Plantronics Audio 355
Plantronics Audio 355Plantronics Audio 355
Plantronics Audio 355Afraz Mirza
 
Marketing Introduction for MLC Corporate Super Specialist Network members
Marketing Introduction for MLC Corporate Super Specialist Network membersMarketing Introduction for MLC Corporate Super Specialist Network members
Marketing Introduction for MLC Corporate Super Specialist Network membersAlisdair Blackman
 

Andere mochten auch (20)

Huawei smart grid rus
Huawei smart grid rusHuawei smart grid rus
Huawei smart grid rus
 
Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...
Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...
Российская криптография: блочные шифры и их режимы шифрования (Russian crypto...
 
Cybercrime in Russia: Trends and Issues
Cybercrime in Russia: Trends and IssuesCybercrime in Russia: Trends and Issues
Cybercrime in Russia: Trends and Issues
 
Вебинар по криптомаршрутизаторам, 14.12.2016
Вебинар по криптомаршрутизаторам, 14.12.2016Вебинар по криптомаршрутизаторам, 14.12.2016
Вебинар по криптомаршрутизаторам, 14.12.2016
 
Crypto regulations in Russia
Crypto regulations in RussiaCrypto regulations in Russia
Crypto regulations in Russia
 
Sectores parroquilaes
Sectores parroquilaesSectores parroquilaes
Sectores parroquilaes
 
Official Diet
Official DietOfficial Diet
Official Diet
 
Hackware v0.4
Hackware v0.4Hackware v0.4
Hackware v0.4
 
Jonesboro family care home
Jonesboro family care homeJonesboro family care home
Jonesboro family care home
 
LocK
LocKLocK
LocK
 
Mobile Business Budgeting Survey from Sage
Mobile Business Budgeting Survey from SageMobile Business Budgeting Survey from Sage
Mobile Business Budgeting Survey from Sage
 
You Can Work Fewer Hours
You Can Work Fewer HoursYou Can Work Fewer Hours
You Can Work Fewer Hours
 
Business Development Analysis Do Customers Matter
Business Development Analysis Do Customers MatterBusiness Development Analysis Do Customers Matter
Business Development Analysis Do Customers Matter
 
Pseudosci v2 edit_1_0125_(1)
Pseudosci v2 edit_1_0125_(1)Pseudosci v2 edit_1_0125_(1)
Pseudosci v2 edit_1_0125_(1)
 
ΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥ
ΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥ
ΦΕΚ ΑΝΑΠΤΥΞΙΑΚΟΥ ΝΟΜΟΥ
 
Plantronics Audio 355
Plantronics Audio 355Plantronics Audio 355
Plantronics Audio 355
 
Marketing Introduction for MLC Corporate Super Specialist Network members
Marketing Introduction for MLC Corporate Super Specialist Network membersMarketing Introduction for MLC Corporate Super Specialist Network members
Marketing Introduction for MLC Corporate Super Specialist Network members
 
New teanabrochure combine
New teanabrochure combineNew teanabrochure combine
New teanabrochure combine
 
Porque tú:
Porque tú:Porque tú:
Porque tú:
 
Paola_Xochicale
Paola_XochicalePaola_Xochicale
Paola_Xochicale
 

Ähnlich wie OpenPGP vs X.509 and Supporting GOST Algorithms

Chapter 8 security tools ii
Chapter 8 security tools iiChapter 8 security tools ii
Chapter 8 security tools iiSyaiful Ahdan
 
Ciso platform-annual-summit-2014-antti-karjalainen-dicoverer-of-heartbleed
Ciso platform-annual-summit-2014-antti-karjalainen-dicoverer-of-heartbleedCiso platform-annual-summit-2014-antti-karjalainen-dicoverer-of-heartbleed
Ciso platform-annual-summit-2014-antti-karjalainen-dicoverer-of-heartbleedPriyanka Aash
 
Hacking the Linux Kernel - An Introduction
Hacking the Linux Kernel - An IntroductionHacking the Linux Kernel - An Introduction
Hacking the Linux Kernel - An IntroductionLevente Kurusa
 
IoT Development from Prototype to Production
IoT Development from Prototype to ProductionIoT Development from Prototype to Production
IoT Development from Prototype to ProductionMender.io
 
Iot development from prototype to production
Iot development from prototype to productionIot development from prototype to production
Iot development from prototype to productionMender.io
 
Chapter 7 security tools i
Chapter 7 security tools iChapter 7 security tools i
Chapter 7 security tools iSyaiful Ahdan
 
Team 5 presentation
Team 5 presentationTeam 5 presentation
Team 5 presentationrob420
 
Kernel Recipes 2016 - Upstream Kernel Graphics is (Finally) Winning
Kernel Recipes 2016 - Upstream Kernel Graphics is (Finally) WinningKernel Recipes 2016 - Upstream Kernel Graphics is (Finally) Winning
Kernel Recipes 2016 - Upstream Kernel Graphics is (Finally) WinningAnne Nicolas
 
Ryu SDN Framework
Ryu SDN FrameworkRyu SDN Framework
Ryu SDN FrameworkAPNIC
 
Automotive Grade Linux and systemd
Automotive Grade Linux and systemdAutomotive Grade Linux and systemd
Automotive Grade Linux and systemdAlison Chaiken
 
Securing Back Office Business Processes with OpenVPN
Securing Back Office Business Processes with OpenVPNSecuring Back Office Business Processes with OpenVPN
Securing Back Office Business Processes with OpenVPNA Green
 

Ähnlich wie OpenPGP vs X.509 and Supporting GOST Algorithms (20)

Kali Linux
Kali LinuxKali Linux
Kali Linux
 
Pyongyang Fortress
Pyongyang FortressPyongyang Fortress
Pyongyang Fortress
 
Chapter 8 security tools ii
Chapter 8 security tools iiChapter 8 security tools ii
Chapter 8 security tools ii
 
Ciso platform-annual-summit-2014-antti-karjalainen-dicoverer-of-heartbleed
Ciso platform-annual-summit-2014-antti-karjalainen-dicoverer-of-heartbleedCiso platform-annual-summit-2014-antti-karjalainen-dicoverer-of-heartbleed
Ciso platform-annual-summit-2014-antti-karjalainen-dicoverer-of-heartbleed
 
Hacking the Linux Kernel - An Introduction
Hacking the Linux Kernel - An IntroductionHacking the Linux Kernel - An Introduction
Hacking the Linux Kernel - An Introduction
 
IoT Development from Prototype to Production
IoT Development from Prototype to ProductionIoT Development from Prototype to Production
IoT Development from Prototype to Production
 
Fedora 12 Introduction
Fedora 12 IntroductionFedora 12 Introduction
Fedora 12 Introduction
 
Iot development from prototype to production
Iot development from prototype to productionIot development from prototype to production
Iot development from prototype to production
 
Chapter 7 security tools i
Chapter 7 security tools iChapter 7 security tools i
Chapter 7 security tools i
 
Pgp
PgpPgp
Pgp
 
Team 5 presentation
Team 5 presentationTeam 5 presentation
Team 5 presentation
 
Kernel Recipes 2016 - Upstream Kernel Graphics is (Finally) Winning
Kernel Recipes 2016 - Upstream Kernel Graphics is (Finally) WinningKernel Recipes 2016 - Upstream Kernel Graphics is (Finally) Winning
Kernel Recipes 2016 - Upstream Kernel Graphics is (Finally) Winning
 
Ryu SDN Framework
Ryu SDN FrameworkRyu SDN Framework
Ryu SDN Framework
 
Automotive Grade Linux and systemd
Automotive Grade Linux and systemdAutomotive Grade Linux and systemd
Automotive Grade Linux and systemd
 
G43053847
G43053847G43053847
G43053847
 
Securing Back Office Business Processes with OpenVPN
Securing Back Office Business Processes with OpenVPNSecuring Back Office Business Processes with OpenVPN
Securing Back Office Business Processes with OpenVPN
 
Porting tock to open titan
Porting tock to open titanPorting tock to open titan
Porting tock to open titan
 
Programming Decentralized Application
Programming Decentralized ApplicationProgramming Decentralized Application
Programming Decentralized Application
 
ICIT2013-Keynote-Speech-In-Bali
ICIT2013-Keynote-Speech-In-BaliICIT2013-Keynote-Speech-In-Bali
ICIT2013-Keynote-Speech-In-Bali
 
kali linux.pptx
kali linux.pptxkali linux.pptx
kali linux.pptx
 

Kürzlich hochgeladen

Best Angular 17 Classroom & Online training - Naresh IT
Best Angular 17 Classroom & Online training - Naresh ITBest Angular 17 Classroom & Online training - Naresh IT
Best Angular 17 Classroom & Online training - Naresh ITmanoharjgpsolutions
 
What’s New in VictoriaMetrics: Q1 2024 Updates
What’s New in VictoriaMetrics: Q1 2024 UpdatesWhat’s New in VictoriaMetrics: Q1 2024 Updates
What’s New in VictoriaMetrics: Q1 2024 UpdatesVictoriaMetrics
 
Powering Real-Time Decisions with Continuous Data Streams
Powering Real-Time Decisions with Continuous Data StreamsPowering Real-Time Decisions with Continuous Data Streams
Powering Real-Time Decisions with Continuous Data StreamsSafe Software
 
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptx
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptxThe Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptx
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptxRTS corp
 
Comparing Linux OS Image Update Models - EOSS 2024.pdf
Comparing Linux OS Image Update Models - EOSS 2024.pdfComparing Linux OS Image Update Models - EOSS 2024.pdf
Comparing Linux OS Image Update Models - EOSS 2024.pdfDrew Moseley
 
JavaLand 2024 - Going serverless with Quarkus GraalVM native images and AWS L...
JavaLand 2024 - Going serverless with Quarkus GraalVM native images and AWS L...JavaLand 2024 - Going serverless with Quarkus GraalVM native images and AWS L...
JavaLand 2024 - Going serverless with Quarkus GraalVM native images and AWS L...Bert Jan Schrijver
 
SAM Training Session - How to use EXCEL ?
SAM Training Session - How to use EXCEL ?SAM Training Session - How to use EXCEL ?
SAM Training Session - How to use EXCEL ?Alexandre Beguel
 
Not a Kubernetes fan? The state of PaaS in 2024
Not a Kubernetes fan? The state of PaaS in 2024Not a Kubernetes fan? The state of PaaS in 2024
Not a Kubernetes fan? The state of PaaS in 2024Anthony Dahanne
 
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...OnePlan Solutions
 
Strategies for using alternative queries to mitigate zero results
Strategies for using alternative queries to mitigate zero resultsStrategies for using alternative queries to mitigate zero results
Strategies for using alternative queries to mitigate zero resultsJean Silva
 
VK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web DevelopmentVK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web Developmentvyaparkranti
 
OpenChain AI Study Group - Europe and Asia Recap - 2024-04-11 - Full Recording
OpenChain AI Study Group - Europe and Asia Recap - 2024-04-11 - Full RecordingOpenChain AI Study Group - Europe and Asia Recap - 2024-04-11 - Full Recording
OpenChain AI Study Group - Europe and Asia Recap - 2024-04-11 - Full RecordingShane Coughlan
 
2024 DevNexus Patterns for Resiliency: Shuffle shards
2024 DevNexus Patterns for Resiliency: Shuffle shards2024 DevNexus Patterns for Resiliency: Shuffle shards
2024 DevNexus Patterns for Resiliency: Shuffle shardsChristopher Curtin
 
Ronisha Informatics Private Limited Catalogue
Ronisha Informatics Private Limited CatalogueRonisha Informatics Private Limited Catalogue
Ronisha Informatics Private Limited Catalogueitservices996
 
VictoriaMetrics Q1 Meet Up '24 - Community & News Update
VictoriaMetrics Q1 Meet Up '24 - Community & News UpdateVictoriaMetrics Q1 Meet Up '24 - Community & News Update
VictoriaMetrics Q1 Meet Up '24 - Community & News UpdateVictoriaMetrics
 
Post Quantum Cryptography – The Impact on Identity
Post Quantum Cryptography – The Impact on IdentityPost Quantum Cryptography – The Impact on Identity
Post Quantum Cryptography – The Impact on Identityteam-WIBU
 
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...Angel Borroy López
 
A healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfA healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfMarharyta Nedzelska
 
VictoriaMetrics Anomaly Detection Updates: Q1 2024
VictoriaMetrics Anomaly Detection Updates: Q1 2024VictoriaMetrics Anomaly Detection Updates: Q1 2024
VictoriaMetrics Anomaly Detection Updates: Q1 2024VictoriaMetrics
 
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...Cizo Technology Services
 

Kürzlich hochgeladen (20)

Best Angular 17 Classroom & Online training - Naresh IT
Best Angular 17 Classroom & Online training - Naresh ITBest Angular 17 Classroom & Online training - Naresh IT
Best Angular 17 Classroom & Online training - Naresh IT
 
What’s New in VictoriaMetrics: Q1 2024 Updates
What’s New in VictoriaMetrics: Q1 2024 UpdatesWhat’s New in VictoriaMetrics: Q1 2024 Updates
What’s New in VictoriaMetrics: Q1 2024 Updates
 
Powering Real-Time Decisions with Continuous Data Streams
Powering Real-Time Decisions with Continuous Data StreamsPowering Real-Time Decisions with Continuous Data Streams
Powering Real-Time Decisions with Continuous Data Streams
 
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptx
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptxThe Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptx
The Role of IoT and Sensor Technology in Cargo Cloud Solutions.pptx
 
Comparing Linux OS Image Update Models - EOSS 2024.pdf
Comparing Linux OS Image Update Models - EOSS 2024.pdfComparing Linux OS Image Update Models - EOSS 2024.pdf
Comparing Linux OS Image Update Models - EOSS 2024.pdf
 
JavaLand 2024 - Going serverless with Quarkus GraalVM native images and AWS L...
JavaLand 2024 - Going serverless with Quarkus GraalVM native images and AWS L...JavaLand 2024 - Going serverless with Quarkus GraalVM native images and AWS L...
JavaLand 2024 - Going serverless with Quarkus GraalVM native images and AWS L...
 
SAM Training Session - How to use EXCEL ?
SAM Training Session - How to use EXCEL ?SAM Training Session - How to use EXCEL ?
SAM Training Session - How to use EXCEL ?
 
Not a Kubernetes fan? The state of PaaS in 2024
Not a Kubernetes fan? The state of PaaS in 2024Not a Kubernetes fan? The state of PaaS in 2024
Not a Kubernetes fan? The state of PaaS in 2024
 
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...
 
Strategies for using alternative queries to mitigate zero results
Strategies for using alternative queries to mitigate zero resultsStrategies for using alternative queries to mitigate zero results
Strategies for using alternative queries to mitigate zero results
 
VK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web DevelopmentVK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web Development
 
OpenChain AI Study Group - Europe and Asia Recap - 2024-04-11 - Full Recording
OpenChain AI Study Group - Europe and Asia Recap - 2024-04-11 - Full RecordingOpenChain AI Study Group - Europe and Asia Recap - 2024-04-11 - Full Recording
OpenChain AI Study Group - Europe and Asia Recap - 2024-04-11 - Full Recording
 
2024 DevNexus Patterns for Resiliency: Shuffle shards
2024 DevNexus Patterns for Resiliency: Shuffle shards2024 DevNexus Patterns for Resiliency: Shuffle shards
2024 DevNexus Patterns for Resiliency: Shuffle shards
 
Ronisha Informatics Private Limited Catalogue
Ronisha Informatics Private Limited CatalogueRonisha Informatics Private Limited Catalogue
Ronisha Informatics Private Limited Catalogue
 
VictoriaMetrics Q1 Meet Up '24 - Community & News Update
VictoriaMetrics Q1 Meet Up '24 - Community & News UpdateVictoriaMetrics Q1 Meet Up '24 - Community & News Update
VictoriaMetrics Q1 Meet Up '24 - Community & News Update
 
Post Quantum Cryptography – The Impact on Identity
Post Quantum Cryptography – The Impact on IdentityPost Quantum Cryptography – The Impact on Identity
Post Quantum Cryptography – The Impact on Identity
 
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...
Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Confi...
 
A healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfA healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdf
 
VictoriaMetrics Anomaly Detection Updates: Q1 2024
VictoriaMetrics Anomaly Detection Updates: Q1 2024VictoriaMetrics Anomaly Detection Updates: Q1 2024
VictoriaMetrics Anomaly Detection Updates: Q1 2024
 
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
 

OpenPGP vs X.509 and Supporting GOST Algorithms

  • 1. mentor.com/embedded Android is a trademark of Google Inc. Use of this trademark is subject to Google Permissions. Linux is the registered trademark of Linus Torvalds in the U.S. and other countries. Qt is a registered trade mark of Digia Plc and/or its subsidiaries. All other trademarks mentioned in this document are trademarks of Dmitry Eremin Solenikov OpenPGP and Russian Cryptography
  • 2. OpenPGP vs X.509 Both are public key infrastructures. Both provide a way to bind a public key to a designated person. ● PKIX ● Absolute trust to preselected CAs by participants ● Hard to cope with CA incidents ● OpenPGP ● WoT provides transitive trust relationship ● It is easy to deal with misbehaving parties 2/6
  • 3. OpenPGP history ● In 1991 Phil Zimmerman published PGP (Pretty Good Privacy) version 1.0 for secure messaging and file transfer through BBS ● OpenPGP IETF Working Group was formed in 1997 ● RFC 2440 – first formal specification was published in November 1998 ● Replaced by RFC 4880 in November 2007 ● Two optional updates are published (incl. NIST ECC) ● No known vulnerabilities 3/6
  • 4. Supporting GOST algorighms ● Symmetric cipher ● This part is postponed due to several open issues ● Message digests ● Easy part ● Public Key algorithms ● Several decision points, but easy otherwise ● KDF ● KeyWrap ● VKO/ECDH 4/6
  • 5. Implementation Status ● Initial algorithms implementation for libgcrypt – GnuPG cryptographic core library ● Proving implementation correctness by implementing RFC 4490 (GOST CMS) in GPG/SM ● Preparing draft of an Internet-Draft (covering signatures and PK) for wider community discussion ● There are still some open discussion points in Public Key algorithms 5/6