tinycrypt ecc-dh and ecc-dsa should not select entropy generator #16472
Comments
|
@lpereira Any thoughts? |
|
I think you need entropy for the nonce generation. |
|
@alexanderwachter, thanks for the reply. In the general case you would need the entropy generator, but you need more than that, you need to provide a random function to use the entropy generator. This entropy does not provide. |
kestewart
added
area: Security
|
@jhedberg, Could you please revisit this ? My opinion is still that the entropy driver should not be selected by tinycrypt. The entropy driver needs to be selected by the subsystem/module that defines the |
|
I believe this analysis is correct. Entropy/random is not necessary to verify signatures, and it is reasonable for an embedded device to be configured for only this situation. Both entropy and a CPRNG would be needed to sign images or generate keys. Hopefully this aspect will get cleaned up by upcoming random/entropy changes. BTW, is this fixed by #19471. |
|
Yes, this is fixed |
Introduction
Tinycrypt provides support for ecc-dh and ecc-dsa.
Problem description
When ecc-dh or ecc-dsa are selected the entropy driver is selected. There is no need for this, ecc-dh and ecc-dsa depend on a random generator but this is not provided by the entropy driver.
The addition of the entropy driver is just adding flash usage.
Even in the case entropy driver would provide a random generator, it still would not be required to include the driver as this is only required when key generation is done. To verify a dsa or to do a key exchange there is no need for the random generator.
Why do we want this change and what problem are we trying to address?
Proposed change
Remove the selection of the entropy driver from tinycrypt Kconfig.
The text was updated successfully, but these errors were encountered: