kris/optee_eng
1
0
Bifurcation 0
miroir de https://github.com/henrydcase/optee_eng.git synchronisé 2024-11-22 07:15:32 +00:00
Code Tickets Publications Wiki Activité
2 Révisions 2 Branches 1 Étiquette 252 KiB
C 80.8%
Diff 6.4%
C++ 5.7%
Shell 4.2%
Makefile 1.5%
Autre 1.4%
7fc8dd7ea9
Aller au fichier
Henry Case 7fc8dd7ea9
Create README.md
2021-01-07 23:57:00 +00:00
3rd Implementation of OPTEE ENGINE (CA) 2021-01-07 23:45:30 +00:00
src/optee_engine Implementation of OPTEE ENGINE (CA) 2021-01-07 23:45:30 +00:00
.gitignore Implementation of OPTEE ENGINE (CA) 2021-01-07 23:45:30 +00:00
.gitmodules Implementation of OPTEE ENGINE (CA) 2021-01-07 23:45:30 +00:00
CMakeLists.txt Implementation of OPTEE ENGINE (CA) 2021-01-07 23:45:30 +00:00
README.md Create README.md 2021-01-07 23:57:00 +00:00

README.md

OPTEE OpenSSL ENGINE for TLS

Typically, a TLS server uses a X509 Certificate and associated Private Key in order to sign TLS session. Both certificate and private key used for signing the certificate form a asymmetric cryptographic key-pair. Revealing the traffic-private-key makes it possible to perform men-in-the-middle type of attacks. Typically private-key is stored on the server’s hard disk. Even if it is stored in encrypted form, at some point HTTPS server needs to have a possibility to decrypt it in order to use for signing. It means that at runtime the key in plaintext will be available in a memory of a HTTPS process. In case of software errors (see Heartbleed.