[Cryptography-dev] Criteria for first release?
Paul Kehrer
paul.l.kehrer at gmail.com
Thu Oct 24 18:05:16 CEST 2013
On Thu, Oct 24, 2013 at 10:27 AM, Alex Gaynor <alex.gaynor at gmail.com> wrote:
> Hi all!
>
> We're at an exciting point where it's actually possible to do stuff with
> cryptography. You know what that means... time to start thinking about a
> release! I'd like us to make a list of the stuff we think should be in our
> first release. Here's my list:
>
> * Figure out our packaging / bundling story with OpenSSL
> * Finish binding OpenSSL to the point where JP can use it for PyOpenSSL
> * The last two block ciphers that conch would need (CAST and Blowfish)
I assume the ultimate goal is to have conch use cryptography for
everything. Would implementing CAST/BF and punting on RSA/DSA still be
useful to conch or is it all or nothing?
> * Finalizing the iterator APIs for BlockCipher
> * Padding APIs
>
> Here's stuff I'm not sure about:
> * Everything that conch needs (this means figuring out the API for RSA/DSA)
> * GCM
I'd prefer GCM support to be present in the first release. It's
(ideally) the best mode to use and I'd love to be able to suggest its
use immediately. I'm okay with pushing RSA/DSA to the future as there
are many pieces to that (including OAEP, etc).
> * CommonCrypto backend
The CommonCrypto backend can probably wait for a subsequent release.
If we did decide we wanted it to be part of an initial release we
would need to prioritize getting a test infrastructure outside of
Travis up and running so we can run OS X tests.
>
> What do ya'll think, am I missing anything, do I have to much?
>
> As a heads up: once we're ready to do the release and we've frozen a
> release-candidate I plan to investigate getting it audited.
>
> Alex
>
> --
> "I disapprove of what you say, but I will defend to the death your right to
> say it." -- Evelyn Beatrice Hall (summarizing Voltaire)
> "The people's good is the highest law." -- Cicero
> GPG Key fingerprint: 125F 5C67 DFE9 4084
>
> _______________________________________________
> Cryptography-dev mailing list
> Cryptography-dev at python.org
> https://mail.python.org/mailman/listinfo/cryptography-dev
>
More information about the Cryptography-dev
mailing list