Start your ENGINEs: dynamically loadable contemporary crypto
https://eprint.iacr.org/2018/354 [eprint.iacr.org]
2018-05-10 16:20
In this paper, focusing on OpenSSL as a de-facto standard, we analyze these limits, their impact on the security of modern systems, and their significance for researchers.
We propose the OpenSSL ENGINE API as a tool in a framework to overcome these limits, describing how it fits in the OpenSSL architecture, its features, and a technical review of its internals.
I don’t know that more OpenSSL API is the solution to any problem, but here it is.
source: green