imporved detection rules for standads and ec curbes

author: Petr Svenda 2019-11-14 00:13:25 +0100
committer: Petr Svenda 2019-11-14 00:13:25 +0100
commit: c82c20b7fa3f26ebfd565e667ccbc3dd7b2ce5f5 (patch)
tree: 806e9583ccb211057c2ac7faef97d10c3b818680 /src
parent: 536e87567f034f885931d2a63643a180517e3315 (diff)
download: sec-certs-c82c20b7fa3f26ebfd565e667ccbc3dd7b2ce5f5.tar.gz
sec-certs-c82c20b7fa3f26ebfd565e667ccbc3dd7b2ce5f5.tar.zst
sec-certs-c82c20b7fa3f26ebfd565e667ccbc3dd7b2ce5f5.zip
1 files changed, 9 insertions, 6 deletions
diff --git a/src/cert_rules.py b/src/cert_rules.py
index 90330d37..3106454d 100644
--- a/src/cert_rules.py
+++ b/src/cert_rules.py
@@ -70,14 +70,15 @@ rules_os = [
 rules_standard_id = [
     'FIPS180-4',
     'FIPS197',
-    'PKCS#[1-9]+',
-    'TLSv1.1',
-    'TLSv1.2',
+    'PKCS[ #]*[1-9]+',
+    'TLS[ ]*v[0-9\.]+',
+    'TLS[ ]*v[0-9\.]+',
     'BSI-AIS[ ]*[0-9]+?',
     'AIS[ ]*[0-9]+?',
     'RFC[ ]*[0-9]+?',
-    'ISO/IEC 14443',
-    'ISO/IEC [0-9]+:[0-9]+',
+    'ISO/IEC[ ]*[0-9]+[-]*[0-9]*',
+    'ISO/IEC[ ]*[0-9]+:[ 0-9]+',
+    'ICAO(?:-SAC|)',
     ]
 
 rules_security_level = [
@@ -112,7 +113,8 @@ rules_crypto_algs = [
 
 rules_ecc_curves = [
     'P-(?:192|224|256|384|521)',
-    'brainpool.+?',
+    'brainpool.+?[rkt]+1',
+    'brainpoolP{[0-9, ]+}[rkt]+1',
     'secp.+?1',
 ]
 
@@ -151,6 +153,7 @@ rules_other = [
     'library',
     ]
 
+
 rules = {}
 rules['rules_vendor'] = rules_vendor
 rules['rules_cert_id'] = rules_cert_id
author	Petr Svenda	2019-11-14 00:13:25 +0100
committer	Petr Svenda	2019-11-14 00:13:25 +0100
commit	c82c20b7fa3f26ebfd565e667ccbc3dd7b2ce5f5 (patch)
tree	806e9583ccb211057c2ac7faef97d10c3b818680 /src
parent	536e87567f034f885931d2a63643a180517e3315 (diff)
download	sec-certs-c82c20b7fa3f26ebfd565e667ccbc3dd7b2ce5f5.tar.gz sec-certs-c82c20b7fa3f26ebfd565e667ccbc3dd7b2ce5f5.tar.zst sec-certs-c82c20b7fa3f26ebfd565e667ccbc3dd7b2ce5f5.zip