The security impact of a new cryptographic library. This paper introduces a new cryptographic library, NaCl, and explains how the design and implementation of the library avoid various types of cryptographic disasters suffered by previous cryptographic libraries such as OpenSSL. Specifically, this paper analyzes the security impact of the following NaCl features: no data flow from secrets to load addresses; no data flow from secrets to branch conditions; no padding oracles; centralizing randomness; avoiding unnecessary randomness; extremely high speed; and cryptographic primitives chosen conservatively in light of the cryptanalytic literature.
Keywords for this software
References in zbMATH (referenced in 9 articles )
Showing results 1 to 9 of 9.
- Apple, Jim: HalftimeHash: modern hashing without 64-bit multipliers or finite fields (2021)
- Ene, Cristian; Mounier, Laurent; Potet, Marie-Laure: Output-sensitive information flow analysis (2021)
- Besson, Frédéric; Blazy, Sandrine; Wilke, Pierre: A verified CompCert front-end for a memory model supporting pointer arithmetic and uninitialised data (2019)
- Renes, Joost; Smith, Benjamin: qDSA: small and secure digital signatures with curve-based Diffie-Hellman key pairs (2017)
- Bernstein, Daniel J.; van Gastel, Bernard; Janssen, Wesley; Lange, Tanja; Schwabe, Peter; Smetsers, Sjaak: TweetNaCl: a crypto library in 100 tweets (2015)
- Faz-Hernández, Armando; López, Julio: Fast implementation of Curve25519 using AVX2 (2015)
- Hinterwälder, Gesine; Moradi, Amir; Hutter, Michael; Schwabe, Peter; Paar, Christof: Full-size high-security ECC implementation on MSP430 microcontrollers (2015)
- Almeida, J. Bacelar; Barbosa, Manuel; Pinto, Jorge S.; Vieira, Bárbara: Formal verification of side-channel countermeasures using self-composition (2013)
- Bernstein, Daniel J.; Lange, Tanja; Schwabe, Peter: The security impact of a new cryptographic library (2012)