Menu
▾
▴
cryptopp-announce
You can subscribe to this list here.
| 2000 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
(2) |
Dec
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2001 |
Jan
(1) |
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2002 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
(1) |
Nov
|
Dec
|
| 2003 |
Jan
|
Feb
|
Mar
(1) |
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2004 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2006 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(3) |
| 2007 |
Jan
|
Feb
|
Mar
|
Apr
|
May
(1) |
Jun
|
Jul
|
Aug
(1) |
Sep
(1) |
Oct
|
Nov
|
Dec
|
| 2009 |
Jan
|
Feb
|
Mar
(1) |
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2010 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
(1) |
Sep
|
Oct
|
Nov
|
Dec
|
|
From: Wei D. <we...@we...> - 2010-08-10 00:04:32
|
Version 5.6.1 of Crypto++ has been released, and can be downloaded from http://www.cryptopp.com/. Below are the main changes from version 5.6.0: 5.6.1 - added support for AES-NI and CLMUL instruction sets in AES and GMAC/GCM - removed WAKE-CFB - fixed several bugs in the SHA-256 x86/x64 assembly code: * incorrect hash on non-SSE2 x86 machines on non-aligned input * incorrect hash on x86 machines when input crosses 0x80000000 * incorrect hash on x64 when compiled with GCC with optimizations enabled - fixed bugs in AES x86 and x64 assembly causing crashes in some MSVC build configurations - switched to a public domain implementation of MARS - ported to MSVC 2010, GCC 4.5.1, Sun Studio 12u1, C++Builder 2010, Intel C++ Compiler 11.1 - renamed the MSVC DLL project to "cryptopp" for compatibility with MSVC 2010 |
|
From: Wei D. <we...@we...> - 2009-03-15 11:19:33
|
Version 5.6.0 of Crypto++ has been released, and can be downloaded from http://www.cryptopp.com/. Below are the changes from version 5.5.2: 5.6 - added AuthenticatedSymmetricCipher interface class and Filter wrappers - added CCM, GCM (with SSE2 assembly), EAX, CMAC, XSalsa20, and SEED - added support for variable length IVs - improved AES and SHA-256 speed on x86 and x64 - fixed incorrect VMAC computation on message lengths that are >64 mod 128 (x86 assembly version is not affected) - fixed compiler error in vmac.cpp on x86 with GCC -fPIC - fixed run-time validation error on x86-64 with GCC 4.3.2 -O2 - fixed HashFilter bug when putMessage=true - removed WORD64_AVAILABLE; compiler support for 64-bit int is now required - ported to GCC 4.3, C++Builder 2009, Sun CC 5.10, Intel C++ Compiler 11 |
|
From: Wei D. <we...@we...> - 2007-09-25 08:20:24
|
Version 5.5.2 of Crypto++ has been released. You can download it from http://www.cryptopp.com/. This version fixed several bugs and added support for new compilers. Speed for several algorithms were also increased when compiling with MSVC for x86-64, by using MASM. Below are the changes from version 5.5.1: 5.5.2 - ported x64 assembly language code for AES, Salsa20, Sosemanuk, and Panama to MSVC 2005 (using MASM since MSVC doesn't support inline assembly on x64) - fixed Salsa20 initialization crash on non-SSE2 machines - fixed Whirlpool crash on Pentium 2 machines - fixed possible branch prediction analysis (BPA) vulnerability in MontgomeryReduce(), which may affect security of RSA, RW, LUC - fixed link error with MSVC 2003 when using "debug DLL" form of runtime library - fixed crash in SSE2_Add on P4 machines when compiled with MSVC 6.0 SP5 with Processor Pack - added support for newly released compilers: MSVC 2008, GCC 4.2, Sun CC 5.9, Intel C++ Compiler 10.0, and Borland C++Builder 2007 |
|
From: Wei D. <we...@we...> - 2007-08-15 21:05:36
|
The FIPS 140-2 validation certificate for Crypto++ Library version 5.3.0 has just been issued, and it's now available from http://www.cryptopp.com. Here are the main changes since the last FIPS-validated version (5.2.3): a.. The build environment was changed to Microsoft Visual C++ 2005. b.. A 64-bit variant of the DLL was introduced. c.. Countermeasures against AES timing attacks were added. |
|
From: Wei D. <we...@we...> - 2007-05-06 14:52:32
|
Version 5.5 of Crypto++ has been released. You can download it from http://www.cryptopp.com/. This version improved the speed of many algorithms, and updated benchmarks for the Intel Core 2, AMD Opteron, and Pentium 4 are available at http://www.cryptopp.com/benchmarks.html. Below are the changes from version 5.4: 5.5 - added VMAC and Sosemanuk (with x86-64 and SSE2 assembly) - improved speed of integer arithmetic, AES, SHA-512, Tiger, Salsa20, Whirlpool, and PANAMA cipher using assembly (x86-64, MMX, SSE2) - optimized Camellia and added defense against timing attacks - updated benchmarks code to show cycles per byte and to time key/IV setup - started using OpenMP for increased multi-core speed - enabled GCC optimization flags by default in GNUmakefile - added blinding and computational error checking for RW signing - changed RandomPool, X917RNG, GetNextIV, DSA/NR/ECDSA/ECNR to reduce the risk of reusing random numbers and IVs after virtual machine state rollback - changed default FIPS mode RNG from AutoSeededX917RNG<DES_EDE3> to AutoSeededX917RNG<AES> - fixed PANAMA cipher interface to accept 256-bit key and 256-bit IV - moved MD2, MD4, MD5, PanamaHash, ARC4, WAKE_CFB into the namespace "Weak" - removed HAVAL, MD5-MAC, XMAC |
|
From: Wei D. <we...@we...> - 2006-12-22 18:33:06
|
Version 5.4 of Crypto++ has been released. You can download it from http://www.cryptopp.com/. Below are the changes from version 5.2.1 which was the last general source code release. 5.2.2 - added SHA-224 - put SHA-256, SHA-384, SHA-512, RSASSA-PSS into DLL 5.2.3 - fixed issues with FIPS algorithm test vectors - put RSASSA-ISO into DLL 5.3 - ported to MSVC .NET 2005 with support for x86-64 - added defense against AES timing attacks, and more AES test vectors - changed StaticAlgorithmName() of Rijndael to "AES", CTR to "CTR" 5.4 - added Salsa20 - updated Whirlpool to version 3.0 - ported to GCC 4.1, Sun C++ 5.8, and Borland C++Builder 2006 |
|
From: Wei D. <we...@we...> - 2006-12-10 16:58:12
|
I forgot to mention a couple of things in the last post. First, after you
download and compile the beta release, please run the validation tests
("cryptest.exe v") and tell me the result (pass, fail, didn't compile, etc)
along with the names and versions of your OS and compiler. Second, here is
the list of changes since version 5.2.1:
5.2.2 - added SHA-224
- put SHA-256, SHA-384, SHA-512, RSASSA-PSS into DLL
5.2.3 - fixed issues with FIPS algorithm test vectors
- put RSASSA-ISO into DLL
5.3 - ported to MSVC .NET 2005 with support for x86-64
- added defense against AES timing attacks, and more AES test vectors
- changed StaticAlgorithmName() of Rijndael to "AES", CTR to "CTR"
5.4 - added Salsa20
- updated Whirlpool to version 3.0
- ported to GCC 4.1
Here is the download link again for your convenience:
http://www.cryptopp.com/temp/cryptopp20061210.zip.
|
|
From: Wei D. <we...@we...> - 2006-12-10 02:33:04
|
The last release of Crypto++ 5.2.1 is a bit outdated now and doesn't compile out of the box with the latest compilers. I've decided to release version 5.4 before 5.3.x, since FIPS testing of 5.3.x might take a few more months. Here is a snapshot of the current CVS. I've tested it with VC6, VC2005, GCC 3.4.4 (cygwin), GCC 4.1.2 (Linux). Please give it a try. I'll make the 5.4 release in a couple of weeks if no major problems are found. http://www.cryptopp.com/temp/cryptopp20061210.zip As a side note, the quality of the GCC compiler seems to have improved significantly since I last looked. GCC 4.1.2 is able to compile Crypto++ at -O3 with no errors. The code produced is only slightly slower than VC 2005 (average of 177 vs 188 from the Crypto++ benchmarks). However the code size it produces is still significantly larger than VC 2005 (4.6 MB vs 2 MB for cryptest.exe). |
|
From: Wei D. <we...@we...> - 2004-07-22 03:43:44
|
A new version of Crypto++ has been released. As usual, you can download it from http://www.cryptopp.com. The online reference manual has been updated as well. There's a link to it from the above address. Here are the changes in this version. (I forgot to send a release annoucement for version 5.2 to the cryptopp-announce list, so here are the changes in 5.2 as well.) 5.2.1 - fixed bug in the "dlltest" DLL testing program - fixed compiling with STLport using VC .NET - fixed compiling with -fPIC using GCC - fixed compiling with -msse2 on systems without memalign() - fixed inability to instantiate PanamaMAC - fixed problems with inline documentation 5.2 - merged in changes for 5.01 - 5.0.4 - added support for using encoding parameters and key derivation parameters with public key encryption (implemented by OAEP and DL/ECIES) - added Camellia, SHACAL-2, Two-Track-MAC, Whirlpool, RIPEMD-320, RIPEMD-128, RIPEMD-256, Base-32 coding - added ThreadUserTimer for timing thread CPU usage - added option for password-based key derivation functions to iterate until a mimimum elapsed thread CPU time is reached - added option (on by default) for DEFLATE compression to detect uncompressible files and process them more quickly - improved compatibility and performance on 64-bit platforms, including Alpha, IA-64, x86-64, PPC64, Sparc64, and MIPS64 - fixed ONE_AND_ZEROS_PADDING to use 0x80 instead 0x01 as padding. - fixed encoding/decoding of PKCS #8 privateKeyInfo to properly handle optional attributes |
|
From: Wei D. <we...@we...> - 2003-03-23 00:37:29
|
Crypto++ 5.1 has been released. This is a maintenance release with mostly bug fixes, and it is recommended for all users of Crypto++ 5.0 or earlier to upgrade to this version. You can download it from http://www.cryptopp.com. Here is a list of the changes introduced in version 5.1: 5.1 - added PSS padding and changed PSSR to track IEEE P1363a draft standard - added blinding for RSA and Rabin to defend against timing attacks on decryption operations - changed signing and decryption APIs to support the above - changed WaitObjectContainer to allow waiting for more than 64 objects at a time on Win32 platforms - fixed a bug in CBC and ECB modes with processing non-aligned data - fixed standard conformance bugs in DLIES (DHAES mode) and RW/EMSA2 signature scheme (these fixes are not backwards compatible) - fixed a number of compiler warnings, minor bugs, and portability problems - removed Sapphire |
|
From: Wei D. <we...@we...> - 2002-10-08 22:43:51
|
[Sorry for the delayed annoucement. I've been having some trouble with email.] Crypto++ 5.0 has been released. You can download it from http://cryptopp.com. Here is a list of the changes introduced in version 5.0: 5.0 - added ESIGN, DLIES, WAKE-OFB, PBKDF1 and PBKDF2 from PKCS #5 - added key validation for encryption and signature public/private keys - renamed StreamCipher interface to SymmetricCipher, which is now implemented by both stream ciphers and block cipher modes including ECB and CBC - added keying interfaces to support resetting of keys and IVs without having to destroy and recreate objects - changed filter interface to support non-blocking input/output - changed SocketSource and SocketSink to use overlapped I/O on Microsoft Windows - grouped related classes inside structs to help templates, for example AESEncryption and AESDecryption are now AES::Encryption and AES::Decryption - where possible, typedefs have been added to improve backwards compatibility when the CRYPTOPP_MAINTAIN_BACKWARDS_COMPATIBILITY macro is defined - changed HAVAL and IDEA to use public domain code - implemented SSE2 optimizations for Integer operations - is being evaluated for FIPS 140-2 compliance - fixed a bug in HMAC::TruncatedFinal() - fixed SKIPJACK byte ordering following NIST clarification dated 5/9/02 |
|
From: Wei D. <we...@es...> - 2002-07-05 23:16:20
|
I've made a beta release of Crypto++ 5.0. You can download it at http://www.eskimo.com/~weidai/cryptopp50beta.zip. I'm doing a beta release before a normal release for two reasons. First, in 5.0 there are many new interfaces and structural changes (i.e. even more extensive use of templates) so there is an increased chance of bugs compared to previous releases. Second, Crypto++ 5.0 is being evaluated against FIPS 140-2, on Microsoft Windows as a static library. If you have any interest in using Crypto++ as a FIPS 140 validated crypto module, you will probably want to test this beta release and report any problems ASAP. (If you are interested in the FIPS validation, please contact me so I have some idea of how much interest there is.) This beta release has been tested only with MSVC 6.0 SP5 and Cygwin/GCC 3.0.4. I do plan to port it to other platforms and compilers before the final release so don't worry too much about that yet. :) A reference manual for this beta release is available at http://www.ibiblio.org/weidai/cryptopp50beta/index.html. It should be very helpful in understanding the interface changes. Here are the major changes in 5.0: 5.0 (beta) - added ESIGN, DLIES, WAKE-OFB - added key validation for asymmetric algorithms - renamed StreamCipher interface to SymmetricCipher, which is now implemented by both stream ciphers and block cipher modes including ECB and CBC - added keying interfaces to support resetting of keys and IVs without having to destroy and recreate objects - changed filter interface to support non-blocking input/output - changed SocketSource and SocketSink to use overlapped I/O on Microsoft Windows - grouped related classes inside structs to help templates, for example AESEncryption and AESDecryption are now AES::Encryption and AES::Decryption - where possible, typedefs have been added to improve backwards compatibility when the CRYPTOPP_MAINTAIN_BACKWARDS_COMPATIBILITY macro is defined - is being evaluated for FIPS 140-2 compliance - fixed a bug in HMAC::TruncatedFinal() |
|
From: Wei D. <we...@es...> - 2001-01-14 07:58:19
|
Crypto++ 4.1 has just been released. In addition, a new reference manual and a renovated FAQ are now available. (Please keep in mind they are both works in progress.) You can find them on the Crypto++ home page at http://cryptopp.com. Crypto++ 4.1 is a maintenance release with bug fixes and a small number of new features. Here is a detailed list of changes: 4.1 - added more support for the recommended elliptic curve parameters in SEC 2 - added Panama MAC, MARC4 - added IV stealing feature to CTS mode - added support for PKCS #8 private key format for RSA, DSA, and elliptic curve schemes - changed Deflate, MD5, Rijndael, and Twofish to use public domain code - fixed a bug with flushing compressed streams - fixed a bug with decompressing stored blocks - fixed a bug with EC point decompression using non-trinomial basis - fixed a bug in NetworkSource::GeneralPump() - fixed a performance issue with EC over GF(p) decryption - fixed syntax to allow GCC to compile without -fpermissive - relaxed some restrictions in the license |
|
From: Wei D. <we...@es...> - 2000-11-03 21:47:40
|
Updated benchmarks are now available at http://www.weidai.com/benchmarks.html. It turns out there is a bug in the Crypto++ 4.0 benchmark code that causes ECIES decryption with precomputation not to be benchmarked. I fixed it for the benchmarks page, but if you run the benchmarks yourself and wonder why ECIES decryption with precomputation was missing, this is the reason. |
|
From: Wei D. <we...@es...> - 2000-11-03 09:23:49
|
Crypto++ 4.0 has just been released. This version introduces a number of new features and changes to existing classes. Most significantly, the BufferedTransformation interface has been changed to support multiple channels and messages, although backwards compatibility has been preserved for the most part. Multiple messages basically means instead of calling Close() on a BufferedTransformation like you used to, you call MessageEnd(), which serves the same function but also reinitializes the object to process another message. However some objects may keep state between messages. Multiple channels is used for things like secret sharing, where each share is treated as a message on a different channel. (The old interface for secret sharing wasn't very elegant, but it's still available for backwards compatibility.) You can find download instructions for Crypto++ on its home page at http://www.cryptopp.com. Updated benchmarks and wider announcements to newsgroups and other mailing lists will follow shortly. Crypto++ is a free C++ class library of cryptographic schemes. Changes made in version 4.0 include: - added Skipjack, CAST-256, Panama, SHA-2 (SHA-256, SHA-384, and SHA-512), and XTR-DH - added a faster variant of Rabin's Information Dispersal Algorithm (IDA) - added class wrappers for these operating system features: - high resolution timers on Windows, Unix, and MacOS - Berkeley and Windows style sockets - Windows named pipes - /dev/random and /dev/urandom on Linux and FreeBSD - Microsoft's CryptGenRandom on Windows - added support for SEC 1 elliptic curve key format and compressed points - added support for X.509 public key format (subjectPublicKeyInfo) for RSA, DSA, and elliptic curves - added support for DER and OpenPGP signature format for DSA - added support for ZLIB compressed data format (RFC 1950) - changed elliptic curve encryption to use ECIES (as defined in SEC 1) - changed MARS key schedule to reflect the latest specification - changed BufferedTransformation interface to support multiple channels and messages - changed CAST and SHA-1 implementations to use public domain source code - fixed bug in StringSource - optmized multi-precision integer code for better performance |
|
From: Alister L. <al...@po...> - 2000-07-25 09:42:23
|
Greetings! This is to announce the creation of the Frequently Asked = Questions document for the Crypto++ library. Well almost... in fact, what we have is a structure/tool for the = collection and browsing of questions and answers. It is organised into = categories and sub-categories relevant to the Crypto++ library. All that = is missing is the content - which is where you come in. We are using an easy-to-use Perl/CGI tool called the Faq-O-Matic which = has two functions: 1. provide a decent browsing and searching tool for the FAQ 2. allow contributions to be easily submitted from members of the = Crypto++ community. So, in future, please check the FAQ before asking a question, and = consider updating the FAQ when you get a satisfactory answer. I have volunteered to be the administrator (which means keeping the = Faq-O-Matic going). If you are interested in taking over the moderation = of a sub-part of it (from an editorial stand-point) please offer. There = are also opportunities for experienced Crypto++ developers to 'seed' the = FAQ with tutorial-type material. Without further ado - the URL: = http://cryptopp.sourceforge.net/cgi-bin/fom Kindest regards, Alister Lee. |
