users@lists.zephyrproject.org | [Zephyr-devel] TinyCrypt end of life - Help needed

Home Messages Hashtags Subgroups

Date Date 1 - 3 of 3

[Zephyr-devel] TinyCrypt end of life - Help needed

Flavio Ceolin #2728 Send it to users list as well. toggle quoted message Show quoted text Hello, Recently Intel notify us about TinyCrypt end of life because Zephyr is one major project still using it. In order to respond it properly, the Zephyr PSIRT team needs to understand how TinyCrypt is currently used on Zephyr. An initial research shows that only the Bluetooth subsystem depends (exclusively) on this library for hashing and elliptic curves. We need the community feedback to know which other places are using TinyCrypt, which features are being used and finally what is the most constraint platform currently supported that is using TinyCrypt. Based on the answers we will come up with some proposals to mitigate this problem. Regards, Flavio Ceolin
More All Messages By This Member
Stefan Hristozov #2733 Dear Flavio, thank you for the information! we are using TinyCrypt in the uoscore-uedhoc [1] project, which we want to contribute to zephyr OS. We are in contact already with the responsible people at Zephyr. Our project is however agnostic regarding the crypto library, i.e., we can exchange TinyCrypt with another library. Which will be the preferred crypto library that should be used in projects like ours with Zephyr OS? mbedTLS? Best regards Stefan [1]: https://github.com/Fraunhofer-AISEC/uoscore-uedhoc On Fri, 2021-10-01 at 13:37 -0700, Flavio Ceolin wrote: Send it to users list as well. Hello, Recently Intel notify us about TinyCrypt end of life because Zephyr is one major project still using it. In order to respond it properly, the Zephyr PSIRT team needs to understand how TinyCrypt is currently used on Zephyr. An initial research shows that only the Bluetooth subsystem depends (exclusively) on this library for hashing and elliptic curves. We need the community feedback to know which other places are using TinyCrypt, which features are being used and finally what is the most constraint platform currently supported that is using TinyCrypt. Based on the answers we will come up with some proposals to mitigate this problem. Regards, Flavio Ceolin -- Stefan Hristozov Department Hardware Security Fraunhofer Institute for Applied and Integrated Security AISEC Lichtenbergstraße 11, 85748 Garching near Munich, Germany Tel. +49 89 32299 86 157 stefan.hristozov@... https://www.aisec.fraunhofer.de/
More All Messages By This Member
Szymon Janc <szymon.janc@...> #2734 Hi, There is no information about tinycrypt being EOL on webpage nor github... https://github.com/intel/tinycrypt https://01.org/tinycrypt toggle quoted message Show quoted text On Fri, 1 Oct 2021 at 22:37, Flavio Ceolin <flavio.ceolin@...> wrote: Send it to users list as well. > Hello, > > Recently Intel notify us about TinyCrypt end of life because Zephyr is > one major project still using it. > > In order to respond it properly, the Zephyr PSIRT team needs to > understand how TinyCrypt is currently used on Zephyr. An > initial research shows that only the Bluetooth subsystem depends > (exclusively) on this library for hashing and elliptic curves. > > We need the community feedback to know which other places are using > TinyCrypt, which features are being used and finally what is the most > constraint platform currently supported that is using TinyCrypt. > > Based on the answers we will come up with some proposals to mitigate > this problem. > > Regards, > Flavio Ceolin > > > -- pozdrawiam Szymon K. Janc
More

1 - 3 of 3

1

Previous Topic Next Topic

Home Hashtags Subgroups Terms