hngopher.com

       [HN Gopher] Let's Build a FIPS-Validated Rust Crypto Library
       ___________________________________________________________________
        
       Let's Build a FIPS-Validated Rust Crypto Library
        
       Author : ssklash
       Score  : 54 points
       Date   : 2023-09-22 20:07 UTC (2 hours ago)
        
 (HTM) web link (briansmith.org)
 (TXT) w3m dump (briansmith.org)
        
       | monocasa wrote:
       | Previous discussion on referenced article "Rust Cryptography
       | Should Be Written in Rust":
       | https://news.ycombinator.com/item?id=37273701
        
       | walth wrote:
       | Who is fronting the $65K for the lab testing?
        
         | jpk2f2 wrote:
         | Pretty sure it costs a lot more than that...
        
       | sontek wrote:
       | Having FIPS validated Rust Crypto is great and all but I'm mostly
       | excited about _pure rust_ Crypto :)
        
         | api wrote:
         | Not sure this can be done without using at least a tiny bit of
         | unsafe since many algorithms will be slow without using CPU
         | accelerator instructions. Other algorithms are much more
         | efficiently implemented using vector instruction sets that
         | usually require unsafe.
        
           | nrabulinski wrote:
           | Unsafe rust is still pure rust
        
             | kibwen wrote:
             | And note that if you implement crypto in Rust by calling
             | out to a C library, that requires the unsafe keyword
             | anyway.
        
           | ori_b wrote:
           | More to the point, often you need assembly to prevent the
           | compiler from sabotaging your carefully constant-time
           | algorithms, replacing your careful length-independent XOR
           | loops with branches and the like.
           | 
           | Performance is a small part of why crypto code is often
           | written in assembly. C is simply too high level, allowing too
           | many optimizations.
           | 
           | For that matter, assembly is too high level, and Intel is
           | adding flags to turn off some of the internal CPU
           | optimizations:
           | 
           | https://www.intel.com/content/www/us/en/developer/articles/t.
           | ..
        
       | ori_b wrote:
       | Let's not. FIPS is bad.
       | 
       | https://archive.ph/9WNhe
        
         | Urd- wrote:
         | There are industries where you have no choice but to use FIPS
         | compliant crypto. Or do they just not get to have pure rust
         | crypto?
        
       ___________________________________________________________________
       (page generated 2023-09-22 23:01 UTC)