openpgpjs

mirror of https://github.com/openpgpjs/openpgpjs.git synced 2025-03-30 15:08:32 +00:00

History

Add support for constant-time decryption of PKCS#1 v1.5-encoded session keys (#1445 )

Implement optional constant-time decryption flow to hinder Bleichenbacher-like
attacks against RSA- and ElGamal public-key encrypted session keys.

Changes:
- Add `config.constantTimePKCS1Decryption` to enable the constant-time
processing (defaults to `false`). The constant-time option is off by default
since it has measurable performance impact on message decryption, and it is
only helpful in specific application scenarios (more info below).
- Add `config.constantTimePKCS1DecryptionSupportedSymmetricAlgorithms`
(defaults to the AES algorithms). The set of supported ciphers is restricted by
default since the number of algorithms negatively affects performance.

Bleichenbacher-like attacks are of concern for applications where both of the
following conditions are met:
1. new/incoming messages are automatically decrypted (without user
interaction);
2. an attacker can determine how long it takes to decrypt each message (e.g.
due to decryption errors being logged remotely).

2022-01-19 19:05:43 +01:00

benchmarks

CI: Add memory usage regression monitoring for pull requests (#1415 )

2021-10-15 16:16:34 +02:00

crypto

Replace strings with integer algorithm identifiers in packet classes (#1410 )

2021-11-22 11:51:27 +01:00

general

Add support for constant-time decryption of PKCS#1 v1.5-encoded session keys (#1445 )

2022-01-19 19:05:43 +01:00

security

Replace armor option with format in openpgp.encrypt, sign and encryptSessionKey (#1354 )