Dropbear test version 2013.61test with ECC

Matt Johnston matt at ucc.asn.au
Thu Nov 14 22:40:59 WST 2013


Hi all,

Dropbear now has support for ECC which is significantly
faster at setting up connections on slow platforms. Since
it's a large patch I'm making a test release first.

I've also added a "-R" mode to automatically generate
hostkeys on first connection - this is recommended on
embedded platforms which may take a while after boot before
a good /dev/urandom seed has been derived.

Download from 
https://matt.ucc.asn.au/dropbear/testing/dropbear-2013.61test.tar.bz2

Cheers,
Matt

2013.61test - Thursday 14 November 2013

- ECC (elliptic curve) support. Supports ECDSA hostkeys (requires new keys to
  be generated) and ECDH for setting up encryption keys (no intervention
  required). This is significantly faster.

- curve25519-sha256 at libssh.org support for setting up encryption keys. This is
  another elliptic curve mode with less potential of NSA interference in
  algorithm parameters. curve25519-donna code thanks to Adam Langley

- -R option to automatically generate hostkeys. This is recommended for
  embedded platforms since it allows the system random number device
  /dev/urandom a longer startup time to generate a secure seed before the
  hostkey is required.

- Compile fixes for old vendor compilers like Tru64 from Daniel Richard G.


More information about the Dropbear mailing list