Skip to content
klutzy edited this page Jan 14, 2015 · 4 revisions

protocol pitfalls

RFC 5246: TLS 1.2

Implementation pitfalls

additional standards

drafts

cryptographic algorithms

  • NIST ECC
    • It's not easy to implement short Weierstrass curves in constant time: safecurves
    • A lot of NIST curves contain obscure numbers: BADA55
  • AES/GCM: careless implementation may permit timing attack

certifications

resources

Clone this wiki locally