This project makes use of Java and C/C++. This project will create OpenJCEPlus and OpenJCEPlusFIPS cryptographic providers which are implementations of the Java™ Cryptography Extensions (JCE) APIs. The actual cryptographic code will come from the OpenCryptographyKitC project which is based on OpenSSL.
Apache License 2.0
4
stars
10
forks
source link
Add additional OCK_ENCRYPTION_RESIDUE for overlay protection #109
OCKC has been documented previously to always require an additional block size for performing cryptographic operations. This is currently in use for all symmetric operations that require a padding scheme.
This update adds an additional block of data whenever the PADDING_NONE scheme ( aka no padding ) is in use. This will prevent OCKC from causing overlays under conditions of using the PADDING_NONE scheme.
OCKC has been documented previously to always require an additional block size for performing cryptographic operations. This is currently in use for all symmetric operations that require a padding scheme.
This update adds an additional block of data whenever the PADDING_NONE scheme ( aka no padding ) is in use. This will prevent OCKC from causing overlays under conditions of using the PADDING_NONE scheme.
Signed-off-by: Jason Katonica katonica@us.ibm.com