version 1.32, 1999/09/22 05:54:08 |
version 1.33, 1999/09/22 06:00:52 |
|
|
<a href=#trans>Cryptographic Transforms</a>: DES, Blowfish, ...<br> |
<a href=#trans>Cryptographic Transforms</a>: DES, Blowfish, ...<br> |
|
|
<a href=#people>International Cryptographers wanted</a><br> |
<a href=#people>International Cryptographers wanted</a><br> |
|
<a href=#papers>Further Reading</a><br> |
<p> |
<p> |
<hr> |
<hr> |
|
|
|
|
Today cryptography is an important means for enhancing the <a |
Today cryptography is an important means for enhancing the <a |
href=security.html>security</a> of an operating system. The |
href=security.html>security</a> of an operating system. The |
cryptography utilized in OpenBSD can be classified into three |
cryptography utilized in OpenBSD can be classified into three |
different aspects:<p> |
different aspects, which will be described later.<p> |
|
|
<p> |
<p> |
<a name=prng></a> |
<a name=prng></a> |
|
|
<ul> |
<ul> |
<li>In libc for creating |
<li>In libc for creating |
<a href=http://www.openbsd.org/cgi-bin/man.cgi?query=blf_key>Blowfish</a> |
<a href=http://www.openbsd.org/cgi-bin/man.cgi?query=blf_key>Blowfish</a> |
passwords. |
passwords. See also the <a href=papers/bcrypt-paper.ps>USENIX paper</a> |
|
on this topic. |
<li>In |
<li>In |
<a href=http://www.openbsd.org/cgi-bin/man.cgi?query=ipsec>IPsec</a> |
<a href=http://www.openbsd.org/cgi-bin/man.cgi?query=ipsec>IPsec</a> |
to provide confidentiality for the network layer. |
to provide confidentiality for the network layer. |
|
|
non-American cryptographer who meets the constraints listed earlier is |
non-American cryptographer who meets the constraints listed earlier is |
interested in helping out with embedded cryptography in OpenBSD, |
interested in helping out with embedded cryptography in OpenBSD, |
please contact us.<p> |
please contact us.<p> |
|
|
|
<p> |
|
<a name=papers></a> |
|
<li><h3><font color=#e00000><strong>Further Reading</strong></font></h3><p> |
|
|
|
A number of papers have been written by OpenBSD team members, about |
|
cryptographic changes they have done in OpenBSD. The postscript |
|
versions of these documents are available as follows. |
|
|
|
<ul> |
|
<li>A Future-Adaptable Password Scheme |
|
Niels Provos, David Mazieres.<br> |
|
<a href=papers/bcrypt-paper.ps>paper</a> and |
|
<a href=papers/bcrypt-slides.ps>slides</a>. |
|
<li>Cryptography in OpenBSD: An Overview<br> |
|
Theo de Raadt, Niklas Hallqvist, Artur Grabowski, |
|
Angelos D. Keromytis, Niels Provos.<br> |
|
<a href=papers/crypt-paper.ps>paper</a> and |
|
<a href=papers/crypt-slides.ps>slides</a>. |
|
<li>strlcpy and strlcat -- consistent, safe, string copy and concatenation. |
|
Todd C. Miller, Theo de Raadt.<br> |
|
<a href=papers/strlcpy-paper.ps>paper</a> and |
|
<a href=papers/strlcpy-slides.ps>slides</a>. |
|
</ul> |
|
|
</dl> |
</dl> |
|
|