From: Olivier Levillain <olivier.levillain@ssi.gouv.fr>
To: caml-list@inria.fr
Subject: Re: [Caml-list] French study on security and functional languages
Date: Sat, 25 May 2013 10:53:04 +0200 [thread overview]
Message-ID: <51A07BF0.5030609@ssi.gouv.fr> (raw)
In-Reply-To: <912F36ED-B157-4DD6-BC68-FFCF99D05E7B@recoil.org>
> I was very glad to see the release of the Parsifal code onto Github too:
> https://github.com/ANSSI-FR/parsifal
>
> It looks like you have done a lot of the work required towards building
> a pure OCaml SSL and Kerberos stack, as well as DNS and SSH parsers in
> there too. We were just discussing the lack of a pure OCaml SSL library
> for MirageOS (which already has a full reimplementation of device drivers
> and TCP/IP and HTTP, and is just missing the final SSL piece).
I'm glad to see you are interested in Parsifal. It was recently
published on GitHub and will be presented as a short paper at SSTIC 2013
(https://www.sstic.org/2013, not to be confused with SSTiC 2013).
However, this is still a project in development and I must warn you it
was first written to allow for writing quick and robust *parsers*. That
is why for the moment, the code essentially consists in the description
of some formats and protocols. We are beginning to work on animating
the protocols, but this will need a lot of work to get done properly.
Concerning the protocols you cite, here is the status :
- nearly all SSL/TLS messages and X.509 certificates are supported and
some test tools already exist (but only for the first handshake round-trip);
- Kerberos as you see it in the repository is at a very early stage but
more commits are coming once I have time to review them;
- DNS is working and I wrote a picodig version to make some requests
(but this one was easy: there is no real context in the protocol);
- We have not yet worked on SSH but it would be a good idea.
Regards,
Olivier Levillain
prev parent reply other threads:[~2013-05-25 8:53 UTC|newest]
Thread overview: 20+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-05-24 7:02 David MENTRE
2013-05-24 7:55 ` Francois Berenger
2013-05-24 12:35 ` rixed
2013-05-24 14:43 ` oliver
2013-05-24 15:15 ` rixed
2013-05-27 1:18 ` Francois Berenger
2013-05-24 14:35 ` oliver
2013-05-24 14:59 ` Esther Baruk
2013-05-24 15:05 ` oliver
2013-05-24 15:18 ` David MENTRE
2013-05-24 15:36 ` Esther Baruk
2013-05-24 23:13 ` oliver
2013-05-26 14:14 ` Marek Kubica
2013-05-24 17:44 ` Pierre-Etienne Meunier
2013-05-27 8:55 ` Fabrice Le Fessant
2013-05-24 14:47 ` oliver
2013-05-24 15:02 ` Johan Grande
2013-05-24 12:41 ` Olivier Levillain
2013-05-24 12:46 ` Anil Madhavapeddy
2013-05-25 8:53 ` Olivier Levillain [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=51A07BF0.5030609@ssi.gouv.fr \
--to=olivier.levillain@ssi.gouv.fr \
--cc=caml-list@inria.fr \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).