[gnutls-devel] GnuTLS | Clarify plans for gost implementation (#942)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Feb 21 21:53:40 CET 2020

Dmitry Baryshkov commented:

1. I think so, because it allows users to compile out GOST support (and Andrew perfectly demonstrates that this feature is demanded by our users).

2. To clarify: GOST algorithms are enabled by default (to allow one to work with certificates, to check signatures, etc).  On the other hand GOST ciphersuites are excluded from `NORMAL`, but can be easily enabled in config file. @nmav can probably better comment on his future intents.

3. For now it is working with certificates, signatures mostly (official digital documents in Russia are signed with GOST DSA). There are not so many sites requiring GOST TLS ciphersuites (mostly government, taxes, tenders, etc). But there are rumors that amount of such sites might increase.

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/942#note_292562468
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200221/c71b2e65/attachment.html>

More information about the Gnutls-devel mailing list