aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJack Lloyd <[email protected]>2016-11-07 11:09:14 -0500
committerJack Lloyd <[email protected]>2016-11-07 11:12:15 -0500
commitcdadd7c77bf761e28249e7f195862082bf9e5c64 (patch)
treeec52e7777c709852942afe63db0ee9e1f2b5c789
parent7ecb99c6200bc0d2235f38ba582ebd8965789594 (diff)
Update todo
-rw-r--r--doc/todo.rst14
1 files changed, 12 insertions, 2 deletions
diff --git a/doc/todo.rst b/doc/todo.rst
index fb97c5dc0..bb0fa499e 100644
--- a/doc/todo.rst
+++ b/doc/todo.rst
@@ -29,7 +29,6 @@ Ciphers, Hashes, PBKDF
Public Key Crypto, Math
----------------------------------------
-* XMSS (draft-irtf-cfrg-xmss-hash-based-signatures)
* SPHINCS-256
* EdDSA (GH #283)
* Ed448-Goldilocks
@@ -106,7 +105,7 @@ Compat Headers
since the OpenSSL API handles both crypto and IO. Use Asio, since it
is expected to be the base of future C++ standard network library.
-FFI (Python, OCaml)
+FFI and Bindings
----------------------------------------
* Expose certificates
@@ -127,6 +126,17 @@ Build/Test
* Test runner python script that captures backtraces and other
debug info during CI
+FIPS 140 Build
+---------------------------------------
+
+* Special build policy that disables all builtin crypto impls, then provides new
+ FIPS 140 versions implemented using just calls to the OpenSSL FIPS module API
+ plus wrapping the appropriate functions for self-tests and so on. This creates a
+ library in FIPS 140 validated form (since there is no 'crypto' anymore from
+ Botan, just the ASN.1 parser, TLS library, PKI etc all of which FIPS 140 does
+ not care about) without the enourmous hassle and expense of actually having to
+ maintain a FIPS validation on Botan.
+
CLI
----------------------------------------