openssl/openssl

RFC 5297: Support for AES-SIV-384 and AES-SIV-512

Open

#26,077 opened on Nov 27, 2024

View on GitHub
 (0 comments) (0 reactions) (0 assignees)C (11,262 forks)batch import
help wantedtriaged: feature

Repository metrics

Stars
 (30,157 stars)
PR merge metrics
 (No merged PRs in 30d)

Description

In the 2008 RFC 5297, it outlines AES-SIV-256, AES-SIV-384, and AES-SIV-512. AES-SIV-256 has already been added to OpenSSL along with smaller keys, but the increased sizes are not. Beyond this RFC, certain Wi-Fi Alliance specifications, such as EasyConnect, require AES-SIV for encryption. The lowest key length required by the specification is AES-SIV-256, with additional options including AES-SIV-384 and AES-SIV-512. Adding these ciphers would make it much simpler to implement full conformance with these specifications.

Contributor guide