rust-crypto
paddingoracle
rust-crypto | paddingoracle | |
---|---|---|
2 | 2 | |
1,357 | 5 | |
- | - | |
0.0 | 10.0 | |
about 1 year ago | almost 7 years ago | |
Rust | Ruby | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
rust-crypto
-
Should we be worried about proliferation of unsafe in Rust code?
3680 in azul 147 in rayon 2 functions and 1 pattern match in ripgrep 25 in rust-crypto
-
Crate for AES256 - which one to choose? Questions about block cipher modes and AEAD too.
rust-crypto (GitHub: DaGenix / rust-crypto) good: support for different algorithms I wanna use for enrypting hashing (the latter is for another project) good: seems easy to use according to the example bad: no audit yet bad: don't know if still maintained, last commit on GitHub is from September 2016
paddingoracle
-
The Matasano Crypto Challenges (2014)
The padding oracle challenge has just been the gift that keeps on giving. I wrote a Ruby Gem for exploiting this:
https://github.com/technion/paddingoracle
I've since used it in the wild several times. It is shocking how prevalent the issue is, I suspect because everybody "used a a trusted AES library" and therefore believes they've complied with general crypto recommendations.
Before /r/javascript went private recently I could reply to a post about nearly any project that claimed to use crypto and explain this vulnerability.
- Crate for AES256 - which one to choose? Questions about block cipher modes and AEAD too.
What are some alternatives?
ring - Safe, fast, small crypto using Rust
cryptopals - Solutions to https://cryptopals.com problems
curve25519-dalek - A pure-Rust implementation of group operations on Ristretto and Curve25519
block-ciphers - Collection of block cipher algorithms written in pure Rust
rust-openssl - OpenSSL bindings for Rust
utils - Utility crates used in RustCrypto
ed25519-dalek - Fast and efficient ed25519 signing and verification in Rust.
RustCrypto - Authenticated Encryption with Associated Data Algorithms: high-level encryption ciphers
sodiumoxide - [DEPRECATED] Sodium Oxide: Fast cryptographic library for Rust (bindings to libsodium)
rustls - A modern TLS library in Rust
consul-template - Template rendering, notifier, and supervisor for @HashiCorp Consul and Vault data.