DDS Security 1.3 RTF — Open Issues - OMG Issue Tracker

Key: DDSSEC13-66

Status: open

Source: Real-Time Innovations ( Dr. Gerardo Pardo-Castellote, Ph.D.)

Summary:

The AES-CCM cypher suite used by the built-in authentication plugins is well suited for higher end processors that have hardware support for AES (e.g. the Intel AES-NI instructions and the the AES instructions in ARMv8).

ARMv7 and other low-end processors don't have hardware support. In these AES can be quite slow.

To better support lower end processors it would be good to add support for a cypher suite that has reasonable performance without hardware support. The industry seems to be converging around the ChaCha20. See:

https://tools.ietf.org/html/rfc8439
https://tools.ietf.org/html/rfc7905

Gerardo

Reported: DDS-SECURITY 1.1b1 — Sat, 16 Mar 2019 05:31 GMT

Updated: Fri, 21 Jun 2024 22:35 GMT