Open spencescu opened 4 years ago
larskanis
commented
4 years ago Yes the gem supports AES-GCM. But your PKCS11 library must support it as well. You need to use PKCS11::CKM_AES_GCM and CK_GCM_PARAMS.
If your library doesn't support GCM, then it's still possible to implement it based on AES-CBC. I did this for an HSM supporting only older algorithms. If it helps, I can provide the code.
larskanis
commented
4 years ago @spencescu Is this issue solved?
spencescu
commented
4 years ago Due to lack of time we solved it in a different way but at some point I would like to validate this solution...
On Wed, Mar 4, 2020 at 1:49 PM Lars Kanis notifications@github.com wrote:
@spencescu https://github.com/spencescu Is this issue solved?
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/larskanis/pkcs11/issues/12?email_source=notifications&email_token=ACQMLMTUWPSJTITDVDGDDVDRFY53LA5CNFSM4KX5QW22YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOENXPUIA#issuecomment-594475552, or unsubscribe https://github.com/notifications/unsubscribe-auth/ACQMLMVPDCZ4XQ3I7TYB7VDRFY53LANCNFSM4KX5QW2Q .
-- Sherman Pencescu, MSc, CISSP Virtual Security, a division of Mar-A-Mar Travel, LLC https://www.virtualsecurity.guru
We are trying to implement AES-GCM via this ruby gem and we are running into issues. Is this algorithm supported?