Algorithms
Algorithm | Purpose | OTP 17 | OTP 18 | Fallback | Definition |
---|---|---|---|---|---|
AES CBC 128-bit | Encryption | X | X | jose_jwa_aes | NIST.800-38A |
AES CBC 192-bit | Encryption | jose_jwa_aes | NIST.800-38A | ||
AES CBC 256-bit | Encryption | X | X | jose_jwa_aes | NIST.800-38A |
AES CTR 128-bit | Encryption | X | X | NIST.800-38A | |
AES CTR 192-bit | Encryption | X | X | NIST.800-38A | |
AES CTR 256-bit | Encryption | X | X | NIST.800-38A | |
AES ECB 128-bit | Encryption | X | jose_jwa_aes | NIST.800-38A | |
AES ECB 192-bit | Encryption | jose_jwa_aes | NIST.800-38A | ||
AES ECB 256-bit | Encryption | X | jose_jwa_aes | NIST.800-38A | |
AES GCM 128-bit | Encryption | X | jose_jwa_aes | NIST.800-38D | |
AES GCM 192-bit | Encryption | X | jose_jwa_aes | NIST.800-38D | |
AES GCM 256-bit | Encryption | X | jose_jwa_aes | NIST.800-38D | |
RSAES-OAEP | Encryption | X | X | jose_jwa_pkcs1 | RFC 3447 |
RSAES-OAEP-256 | Encryption | jose_jwa_pkcs1 | RFC 3447 | ||
RSAES-PKCS1-v1_5 | Encryption | X | X | jose_jwa_pkcs1 | RFC 3447 |
RSASSA-PKCS1-v1_5 | Signature | X | X | jose_jwa_pkcs1 | RFC 3447 |
RSASSA-PSS | Signature | jose_jwa_pkcs1 | RFC 3447 |
There are also several “helper” algorithms used with the above that have no native implementations currently in OTP:
Algorithm | Purpose | Fallback | Definition |
---|---|---|---|
AES Key Wrap | Key Wrap | jose_jwa_aes_kw | RFC 3394 |
Concat KDF | Key Derivation | jose_jwa_concat_kdf | NIST.800-56A |
MGF1 | Mask Generation | jose_jwa_pkcs1 | RFC 3447 |
PBKDF1 | Key Derivation | jose_jwa_pkcs5 | RFC 2898 |
PBKDF2 | Key Derivation | jose_jwa_pkcs5 | RFC 2898 |
PKCS #7 Padding | Padding | jose_jwa_pkcs7 | RFC 2315 |