modules: Kconfig.tls-generic: Add CONFIG_MBEDTLS_ECDSA_DETERMINISTIC
From mbedTLS's description: Enable deterministic ECDSA (RFC 6979). Standard ECDSA is "fragile" in the sense that lack of entropy when signing may result in a compromise of the long-term signing key. This is avoided by the deterministic variant. Signed-off-by: Paul Sokolovsky <paul.sokolovsky@linaro.org>
This commit is contained in:
parent
2845d8f404
commit
fb4e1da114
1 changed files with 3 additions and 0 deletions
|
@ -78,6 +78,9 @@ config MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
|
|||
config MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
|
||||
bool "Enable the ECDH-ECDSA based ciphersuite modes"
|
||||
|
||||
config MBEDTLS_ECDSA_DETERMINISTIC
|
||||
bool "Enable deterministic ECDSA (RFC 6979)"
|
||||
|
||||
config MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
|
||||
bool "Enable the ECDH-RSA based ciphersuite modes"
|
||||
|
||||
|
|
Loading…
Add table
Add a link
Reference in a new issue