A series of libraries and packages that provide security and crypto functions.
- Provide memory buffers that do not get paged to disk
- Memory is zeroed when returned to the pool, disposed or finialized
- Memory is zeroed when the pool is disposed or finialized
- Working set can be increased automatically (on windows only at the moment) as the virtual lock size on windows per process is my default only 2mb in size.
A interest learning exercise in producing a TLS 1.3 Library based off the experimental "Pipelines" from CoreFXLabs.
Currently supports TLS 1.2 and TLS 1.3 Draft 18, Draft 19 is a WIP.
Thanks to Mint/Tris who I have used to help understand from.
Currently uses OpenSsl 1.1, and Windows CNG for the crypto part and supports
Hello Retry, and standard Handshake.
Now supports/downgrades to TLS 1.3 Correctly
AESxxx-GCM ChaCha20/Poly ECDSA certificates RSA certificates
Key exchanges (All now supported)
Some support for Windows CNG is working, most extensions. Multiple server certificates, secure renegotiation
https://tls13.cetus.io was hosting a site running on it (but the free hosting ran out). It ran for 4 weeks serving the TLS 1.3 spec without any downtime.
- x25519
- x448
- ffdhe8192
- ffdhe6144
- ffdhe4096
- ffdhe3072
- ffdhe2048
- secp521r1
- secp384r1
- secp256r1
This library aims to prove out the use case for Pipelines having a native TLS library and for how TLS 1.3 can be implemented in that library.
Help and submissions are welcome!