diff options
author | Jack Lloyd <[email protected]> | 2016-11-07 11:09:14 -0500 |
---|---|---|
committer | Jack Lloyd <[email protected]> | 2016-11-07 11:12:15 -0500 |
commit | cdadd7c77bf761e28249e7f195862082bf9e5c64 (patch) | |
tree | ec52e7777c709852942afe63db0ee9e1f2b5c789 | |
parent | 7ecb99c6200bc0d2235f38ba582ebd8965789594 (diff) |
Update todo
-rw-r--r-- | doc/todo.rst | 14 |
1 files changed, 12 insertions, 2 deletions
diff --git a/doc/todo.rst b/doc/todo.rst index fb97c5dc0..bb0fa499e 100644 --- a/doc/todo.rst +++ b/doc/todo.rst @@ -29,7 +29,6 @@ Ciphers, Hashes, PBKDF Public Key Crypto, Math ---------------------------------------- -* XMSS (draft-irtf-cfrg-xmss-hash-based-signatures) * SPHINCS-256 * EdDSA (GH #283) * Ed448-Goldilocks @@ -106,7 +105,7 @@ Compat Headers since the OpenSSL API handles both crypto and IO. Use Asio, since it is expected to be the base of future C++ standard network library. -FFI (Python, OCaml) +FFI and Bindings ---------------------------------------- * Expose certificates @@ -127,6 +126,17 @@ Build/Test * Test runner python script that captures backtraces and other debug info during CI +FIPS 140 Build +--------------------------------------- + +* Special build policy that disables all builtin crypto impls, then provides new + FIPS 140 versions implemented using just calls to the OpenSSL FIPS module API + plus wrapping the appropriate functions for self-tests and so on. This creates a + library in FIPS 140 validated form (since there is no 'crypto' anymore from + Botan, just the ASN.1 parser, TLS library, PKI etc all of which FIPS 140 does + not care about) without the enourmous hassle and expense of actually having to + maintain a FIPS validation on Botan. + CLI ---------------------------------------- |