ECDH and ECC in PolarSSL
With Best Regards.
To give the simple answer: Yes
But it's not going to be supported in the next 3 months.
If you need it within a specific time frame for commercial purposes, you can contact me by mail and maybe we can work something out.
any news about implementation of ecc?
I have heard that one of our contributers might be busy finishing up an implementation. I'll check into that!
Before releasing a lot of testing needs to be done.
Is it possible to release the ECC releated source code on the GIthub trunk, even if it is not fully tested? Thanks a lot!
Yes. We will shortly. We currently have two 'competing' implementation branches that we are consolidating. But I expect to have a preliminary branch up in the next two weeks. You may bug me about that :)
Is the ECC releated source code ready to branch up on Github? Thanks a lot!
Pushed the first version online at github:
WARNING: This branch WILL be rebased in the future for cleanups, so keep that in mind!
This branch only contains the bare ECC code, not yet the ciphersuites based on it. They will be added soon.
If you do check it out, please let us know if you run into any issues, have suggestions, see mistakes, miss features, etc..
I have compiled OpenVPN with PolatSSL and it does not show ECC ciphers. When will this be implemented?
You're probably better off asking on the OpenVPN forum..
I know they are not yet supporting the 1.3 development branch. I hope they will do so soon after the first official release. That will be in this month.
Would you be able to tell us if version 1.3 will support ECDHE-ECDSA-AES256-GCM-SHA384 cipher suite?
99% certainty: Yes..
(All the basic parts are there. We just have to couple it all together..)
Based on our current progress wrapping up for 1.3.0: Yes..
Although not fully stable yet (there might be some changes in the API), we have just pushed our new development branch on github.
This supports the ECDHE-ECDSA-AES256-GCM-SHA384 ciphersuite..