| 1 | ;;; -*-conf-*- |
| 2 | ;;; |
| 3 | ;;; Default configuration for Seccure keys |
| 4 | ;;; |
| 5 | ;;; (c) 2012 Mark Wooding |
| 6 | ;;; |
| 7 | |
| 8 | ;;;----- Licensing notice --------------------------------------------------- |
| 9 | ;;; |
| 10 | ;;; This file is part of the distorted.org.uk key management suite. |
| 11 | ;;; |
| 12 | ;;; distorted-keys is free software; you can redistribute it and/or modify |
| 13 | ;;; it under the terms of the GNU General Public License as published by |
| 14 | ;;; the Free Software Foundation; either version 2 of the License, or |
| 15 | ;;; (at your option) any later version. |
| 16 | ;;; |
| 17 | ;;; distorted-keys is distributed in the hope that it will be useful, |
| 18 | ;;; but WITHOUT ANY WARRANTY; without even the implied warranty of |
| 19 | ;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
| 20 | ;;; GNU General Public License for more details. |
| 21 | ;;; |
| 22 | ;;; You should have received a copy of the GNU General Public License |
| 23 | ;;; along with distorted-keys; if not, write to the Free Software Foundation, |
| 24 | ;;; Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. |
| 25 | |
| 26 | ;;;-------------------------------------------------------------------------- |
| 27 | ;;; Seccure configuration. |
| 28 | ;;; |
| 29 | ;;; Properties defined by the key-type are as follows. All the properties |
| 30 | ;;; are optional. |
| 31 | ;;; |
| 32 | ;;; curve The name of the elliptic curve to use. See the |
| 33 | ;;; seccure(1) man page for a list of curves. The name |
| 34 | ;;; here can be any substring unique to a single curve. |
| 35 | ;;; The default is `p256', which selects the NIST P256 |
| 36 | ;;; curve. |
| 37 | ;;; |
| 38 | ;;; tagsz The size of the MAC tag used to ensure the integrity |
| 39 | ;;; of encrypted messages (and therefore security against |
| 40 | ;;; chosen-ciphertext attack). |
| 41 | |
| 42 | [%seccure] |
| 43 | type = seccure |
| 44 | |
| 45 | ;; Curve selection. |
| 46 | curve = p256 |
| 47 | |
| 48 | ;; MAC tag length. |
| 49 | tagsz = 128 |
| 50 | |
| 51 | [seccure-integrity] |
| 52 | @include = %seccure %asymmetric-integrity |
| 53 | |
| 54 | [seccure-secrecy] |
| 55 | @include = %seccure %asymmetric-secrecy |
| 56 | |
| 57 | [%seccure-infra] |
| 58 | @include = %seccure |
| 59 | |
| 60 | ;;;----- That's all, folks -------------------------------------------------- |