Dropbear test version 2013.61test with ECC
Matt Johnston
matt at ucc.asn.au
Thu Nov 14 22:40:59 WST 2013
Hi all,
Dropbear now has support for ECC which is significantly
faster at setting up connections on slow platforms. Since
it's a large patch I'm making a test release first.
I've also added a "-R" mode to automatically generate
hostkeys on first connection - this is recommended on
embedded platforms which may take a while after boot before
a good /dev/urandom seed has been derived.
Download from
https://matt.ucc.asn.au/dropbear/testing/dropbear-2013.61test.tar.bz2
Cheers,
Matt
2013.61test - Thursday 14 November 2013
- ECC (elliptic curve) support. Supports ECDSA hostkeys (requires new keys to
be generated) and ECDH for setting up encryption keys (no intervention
required). This is significantly faster.
- curve25519-sha256 at libssh.org support for setting up encryption keys. This is
another elliptic curve mode with less potential of NSA interference in
algorithm parameters. curve25519-donna code thanks to Adam Langley
- -R option to automatically generate hostkeys. This is recommended for
embedded platforms since it allows the system random number device
/dev/urandom a longer startup time to generate a secure seed before the
hostkey is required.
- Compile fixes for old vendor compilers like Tru64 from Daniel Richard G.
More information about the Dropbear
mailing list