Add shouldUseGMTUnixTime method to allow optional inclusion of

gmt_unix_time in Random (defaults to false)
author: Peter Dettman <peter.dettman@bouncycastle.org> 2013-12-07 05:38:34 +0400
committer: Peter Dettman <peter.dettman@bouncycastle.org> 2013-12-07 05:38:34 +0400
commit: 440441709c9433f24d88bc3c3758747938979021 (patch)
tree: fdd34df6e5e7536cd1a0157c4defe38a8d455579 /core/src/main/java/org/bouncycastle/crypto/tls/AbstractTlsPeer.java
parent: cefb9febde57e12a187e18fad4255c2905543c68 (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/core/src/main/java/org/bouncycastle/crypto/tls/AbstractTlsPeer.java b/core/src/main/java/org/bouncycastle/crypto/tls/AbstractTlsPeer.java
index 80d6af73..26ad6d34 100644
--- a/core/src/main/java/org/bouncycastle/crypto/tls/AbstractTlsPeer.java
+++ b/core/src/main/java/org/bouncycastle/crypto/tls/AbstractTlsPeer.java
@@ -5,6 +5,17 @@ import java.io.IOException;
 public abstract class AbstractTlsPeer
     implements TlsPeer
 {
+    public boolean shouldUseGMTUnixTime()
+    {
+        /*
+         * draft-mathewson-no-gmtunixtime-00 2. For the reasons we discuss above, we recommend that
+         * TLS implementors MUST by default set the entire value the ClientHello.Random and
+         * ServerHello.Random fields, including gmt_unix_time, to a cryptographically random
+         * sequence.
+         */
+        return false;
+    }
+
     public void notifySecureRenegotiation(boolean secureRenegotiation) throws IOException
     {
         if (!secureRenegotiation)
author	Peter Dettman <peter.dettman@bouncycastle.org>	2013-12-07 05:38:34 +0400
committer	Peter Dettman <peter.dettman@bouncycastle.org>	2013-12-07 05:38:34 +0400
commit	440441709c9433f24d88bc3c3758747938979021 (patch)
tree	fdd34df6e5e7536cd1a0157c4defe38a8d455579 /core/src/main/java/org/bouncycastle/crypto/tls/AbstractTlsPeer.java
parent	cefb9febde57e12a187e18fad4255c2905543c68 (diff)