Skip to content

Latest commit

 

History

History
53 lines (35 loc) · 2.18 KB

Extra Resources.md

File metadata and controls

53 lines (35 loc) · 2.18 KB

Here are some of the most helpful and approachable resource I've found for the sake of developing this library

JCA:

https://docs.oracle.com/javase/8/docs/technotes/guides/security/crypto/CryptoSpec.html https://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html https://developer.android.com/reference/javax/crypto/Cipher.html <- good resource for common combinations https://tools.ietf.org/html/rfc5116

On galois counter mode:

http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38c.pdf http://csrc.nist.gov/groups/ST/toolkit/BCM/documents/proposedmodes/gcm/gcm-spec.pdf https://crypto.stackexchange.com/questions/6842/how-to-choose-between-aes-ccm-and-aes-gcm-for-storage-volume-encryption https://tools.ietf.org/html/rfc5116 https://security.stackexchange.com/questions/2202/lessons-learned-and-misconceptions-regarding-encryption-and-cryptology/2213#2213 https://blog.cryptographyengineering.com/2012/05/19/how-to-choose-authenticated-encryption/

Passwords:

https://stackoverflow.com/questions/8881291/why-is-char-preferred-over-string-for-passwords

Mode:

http://www.fi.muni.cz/~xsvenda/docs/AE_comparison_ipics04.pdf https://crypto.stackexchange.com/questions/26783/ciphertext-and-tag-size-and-iv-transmission-with-aes-in-gcm-mode

Padding schemes:

https://security.stackexchange.com/questions/52665/which-is-the-best-cipher-mode-and-padding-mode-for-aes-encryption https://crypto.stackexchange.com/questions/10775/practical-disadvantages-of-gcm-mode-encryption

SecureRandom:

https://www.synopsys.com/blogs/software-security/proper-use-of-javas-securerandom/ https://tersesystems.com/2015/12/17/the-right-way-to-use-securerandom/

MAC

https://tools.ietf.org/html/rfc2104 https://tools.ietf.org/html/rfc4868

JWT and related

https://tools.ietf.org/html/rfc7519 JWT https://tools.ietf.org/html/rfc7515 JWS https://tools.ietf.org/html/rfc7516 JWE https://tools.ietf.org/html/rfc7518 JWA https://medium.facilelogin.com/jwt-jws-and-jwe-for-not-so-dummies-b63310d201a3 <- Awesome overview

Signatures:

https://crypto.stackexchange.com/questions/1795/how-can-i-convert-a-der-ecdsa-signature-to-asn-1/1797#1797