Network Security Services

Network Security Services
Developer(s)	Mozilla, AOL, Red Hat, Sun Microsystems, Oracle Corporation, Google and others
Stable release(s) [±]
Standard
Standard	3.84 / October 12, 2022;16 months ago
Extended Support Release	3.79.1 / August 18, 2022;17 months ago
Repository	hg.mozilla.org/projects/nss ;
Written in	C, assembly
Operating system	Cross-platform
Platform	Cross-platform
Type	Libraries
License	MPL 2.0
Website	developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS

Last updated February 17, 2024

Network Security Services (NSS) is a collection of cryptographic computer libraries designed to support cross-platform development of security-enabled client and server applications with optional support for hardware TLS/SSL acceleration on the server side and hardware smart cards on the client side. NSS provides a complete open-source implementation of cryptographic libraries supporting Transport Layer Security (TLS) / Secure Sockets Layer (SSL) and S/MIME. NSS releases prior to version 3.14 are tri-licensed under the Mozilla Public License 1.1, the GNU General Public License, and the GNU Lesser General Public License. Since release 3.14, NSS releases are licensed under GPL-compatible Mozilla Public License 2.0.^[2]

History

NSS originated from the libraries developed when Netscape invented the SSL security protocol.

FIPS 140 validation and NISCC testing

The NSS software crypto module has been validated five times (in 1997,^[3] 1999, 2002,^[4] 2007, and 2010^[5]) for conformance to FIPS 140 at Security Levels 1 and 2.^[6] NSS was the first open source cryptographic library to receive FIPS 140 validation.^[6] The NSS libraries passed the NISCC TLS/SSL and S/MIME test suites (1.6 million test cases of invalid input data).^[6]

Applications that use NSS

AOL, Red Hat, Sun Microsystems/Oracle Corporation, Google and other companies and individual contributors have co-developed NSS. Mozilla provides the source code repository, bug tracking system, and infrastructure for mailing lists and discussion groups. They and others named below use NSS in a variety of products, including the following:

Mozilla client products, including Firefox, Thunderbird, SeaMonkey, and Firefox for mobile.^[7]
AOL Communicator and AOL Instant Messenger (AIM)
Open source client applications such as Evolution, Pidgin, and OpenOffice.org 2.0 onward (and its descendants).
Server products from Red Hat: Red Hat Directory Server, Red Hat Certificate System, and the mod nss SSL module for the Apache web server.
Sun server products from the Sun Java Enterprise System, including Sun Java System Web Server, Sun Java System Directory Server, Sun Java System Portal Server, Sun Java System Messaging Server, and Sun Java System Application Server, open source version of Directory Server OpenDS.
Libreswan IKE/IPsec requires NSS. It is a fork of Openswan which could optionally use NSS.

Architecture

NSS includes a framework to which developers and OEMs can contribute patches, such as assembly code, to optimize performance on their platforms. Mozilla has certified NSS 3.x on 18 platforms.^[8]^[9] NSS makes use of Netscape Portable Runtime (NSPR), a platform-neutral open-source API for system functions designed to facilitate cross-platform development. Like NSS, NSPR has been used heavily in multiple products.

Software development kit

In addition to libraries and APIs, NSS provides security tools required for debugging, diagnostics, certificate and key management, cryptography-module management, and other development tasks. NSS comes with an extensive and growing set of documentation, including introductory material, API references, man pages for command-line tools, and sample code.

Programmers can utilize NSS as source and as shared (dynamic) libraries. Every NSS release is backward-compatible with previous releases, allowing NSS users to upgrade to new NSS shared libraries without recompiling or relinking their applications.

Interoperability and open standards

NSS supports a range of security standards, including the following:^[10]^[11]

TLS 1.0 (RFC 2246), 1.1 (RFC 4346), 1.2 (RFC 5246), and 1.3 (RFC 8446). The Transport Layer Security (TLS) protocol from the IETF supersedes SSL v3.0 while remaining backward-compatible with SSL v3 implementations.
SSL 3.0. The Secure Sockets Layer (SSL) protocol allows mutual authentication between a client and server and the establishment of an authenticated and encrypted connection.
DTLS 1.0 (RFC 4347) and 1.2 (RFC 6347).
DTLS-SRTP (RFC 5764).
The following PKCS standards:
- PKCS #1. RSA standard that governs implementation of public-key cryptography based on the RSA algorithm.
- PKCS #3. RSA standard that governs implementation of Diffie–Hellman key agreement.
- PKCS #5. RSA standard that governs password-based cryptography, for example to encrypt private keys for storage.
- PKCS #7. RSA standard that governs the application of cryptography to data, for example digital signatures and digital envelopes.
- PKCS #8. RSA standard that governs the storage and encryption of private keys.
- PKCS #9. RSA standard that governs selected attribute types, including those used with PKCS #7, PKCS #8, and PKCS #10.
- PKCS #10. RSA standard that governs the syntax for certificate requests.
- PKCS #11. RSA standard that governs communication with cryptographic tokens (such as hardware accelerators and smart cards) and permits application independence from specific algorithms and implementations.
- PKCS #12. RSA standard that governs the format used to store or transport private keys, certificates, and other secret material.
Cryptographic Message Syntax, used in S/MIME (RFC 2311 and RFC 2633). IETF message specification (based on the popular Internet MIME standard) that provides a consistent way to send and receive signed and encrypted MIME data.
X.509 v3. ITU standard that governs the format of certificates used for authentication in public-key cryptography.
OCSP (RFC 2560). The Online Certificate Status Protocol (OCSP) governs real-time confirmation of certificate validity.
PKIX Certificate and CRL Profile (RFC 3280). The first part of the four-part standard under development by the Public-Key Infrastructure (X.509) working group of the IETF (known as PKIX) for a public-key infrastructure for the Internet.
RSA, DSA, ECDSA, Diffie–Hellman, EC Diffie–Hellman, AES, Triple DES, Camellia, IDEA, SEED, DES, RC2, RC4, SHA-1, SHA-256, SHA-384, SHA-512, MD2, MD5, HMAC: Common cryptographic algorithms used in public-key and symmetric-key cryptography.
FIPS 186-2 pseudorandom number generator.

Hardware support

NSS supports the PKCS #11 interface for access to cryptographic hardware like TLS/SSL accelerators, hardware security modules and smart cards. Since most hardware vendors such as SafeNet, AEP and Thales also support this interface, NSS-enabled applications can work with high-speed crypto hardware and use private keys residing on various smart cards, if vendors provide the necessary middleware. NSS version 3.13 and above support the Advanced Encryption Standard New Instructions (AES-NI).^[12]

Java support

Network Security Services for Java (JSS) consists of a Java interface to NSS. It supports most of the security standards and encryption technologies supported by NSS. JSS also provides a pure Java interface for ASN.1 types and BER/DER encoding.^[13]

Related Research Articles

Transport Layer Security (TLS) is a cryptographic protocol designed to provide communications security over a computer network. The protocol is widely used in applications such as email, instant messaging, and voice over IP, but its use in securing HTTPS remains the most publicly visible.

<span class="mw-page-title-main">Public key infrastructure</span> System that can issue, distribute and verify digital certificates

A public key infrastructure (PKI) is a set of roles, policies, hardware, software and procedures needed to create, manage, distribute, use, store and revoke digital certificates and manage public-key encryption. The purpose of a PKI is to facilitate the secure electronic transfer of information for a range of network activities such as e-commerce, internet banking and confidential email. It is required for activities where simple passwords are an inadequate authentication method and more rigorous proof is required to confirm the identity of the parties involved in the communication and to validate the information being transferred.

In cryptography, a public key certificate, also known as a digital certificate or identity certificate, is an electronic document used to prove the validity of a public key. The certificate includes the public key and information about it, information about the identity of its owner, and the digital signature of an entity that has verified the certificate's contents. If the device examining the certificate trusts the issuer and finds the signature to be a valid signature of that issuer, then it can use the included public key to communicate securely with the certificate's subject. In email encryption, code signing, and e-signature systems, a certificate's subject is typically a person or organization. However, in Transport Layer Security (TLS) a certificate's subject is typically a computer or other device, though TLS certificates may identify organizations or individuals in addition to their core role in identifying devices. TLS, sometimes called by its older name Secure Sockets Layer (SSL), is notable for being a part of HTTPS, a protocol for securely browsing the web.

In cryptography, X.509 is an International Telecommunication Union (ITU) standard defining the format of public key certificates. X.509 certificates are used in many Internet protocols, including TLS/SSL, which is the basis for HTTPS, the secure protocol for browsing the web. They are also used in offline applications, like electronic signatures.

OpenSSL is a software library for applications that provide secure communications over computer networks against eavesdropping, and identify the party at the other end. It is widely used by Internet servers, including the majority of HTTPS websites.

In cryptography, Camellia is a symmetric key block cipher with a block size of 128 bits and key sizes of 128, 192 and 256 bits. It was jointly developed by Mitsubishi Electric and NTT of Japan. The cipher has been approved for use by the ISO/IEC, the European Union's NESSIE project and the Japanese CRYPTREC project. The cipher has security levels and processing abilities comparable to the Advanced Encryption Standard.

S/MIME is a standard for public-key encryption and signing of MIME data. S/MIME is on an IETF standards track and defined in a number of documents, most importantly RFC 8551. It was originally developed by RSA Data Security, and the original specification used the IETF MIME specification with the de facto industry standard PKCS #7 secure message format. Change control to S/MIME has since been vested in the IETF, and the specification is now layered on Cryptographic Message Syntax (CMS), an IETF specification that is identical in most respects with PKCS #7. S/MIME functionality is built into the majority of modern email software and interoperates between them. Since it is built on CMS, MIME can also hold an advanced digital signature.

The Federal Information Processing Standard Publication 140-2,, is a U.S. government computer security standard used to approve cryptographic modules. The title is Security Requirements for Cryptographic Modules. Initial publication was on May 25, 2001, and was last updated December 3, 2002.

<span class="mw-page-title-main">TLS acceleration</span> Method to accelerate Transport Layer Security

TLS acceleration is a method of offloading processor-intensive public-key encryption for Transport Layer Security (TLS) and its predecessor Secure Sockets Layer (SSL) to a hardware accelerator.

NSA Suite B Cryptography was a set of cryptographic algorithms promulgated by the National Security Agency as part of its Cryptographic Modernization Program. It was to serve as an interoperable cryptographic base for both unclassified information and most classified information.

A hardware security module (HSM) is a physical computing device that safeguards and manages secrets, performs encryption and decryption functions for digital signatures, strong authentication and other cryptographic functions. These modules traditionally come in the form of a plug-in card or an external device that attaches directly to a computer or network server. A hardware security module contains one or more secure cryptoprocessor chips.

In cryptography, PKCS #11 is one of the Public-Key Cryptography Standards, and also refers to the programming interface to create and manipulate cryptographic tokens.

cryptlib is an open-source cross-platform software security toolkit library. It is distributed under the Sleepycat License, a free software license compatible with the GNU General Public License. Alternatively, cryptlib is available under a proprietary license for those preferring to use it under proprietary terms.

Daniel Bleichenbacher is a Swiss cryptographer, previously a researcher at Bell Labs, and currently employed at Google. He received his Ph.D. from ETH Zurich in 1996 for contributions to computational number theory, particularly concerning message verification in the ElGamal and RSA public-key cryptosystems. His doctoral advisor was Ueli Maurer.

In cryptography, Curve25519 is an elliptic curve used in elliptic-curve cryptography (ECC) offering 128 bits of security and designed for use with the Elliptic-curve Diffie–Hellman (ECDH) key agreement scheme. It is one of the fastest curves in ECC, and is not covered by any known patents. The reference implementation is public domain software.

wolfSSL is a small, portable, embedded SSL/TLS library targeted for use by embedded systems developers. It is an open source implementation of TLS written in the C programming language. It includes SSL/TLS client libraries and an SSL/TLS server implementation as well as support for multiple APIs, including those defined by SSL and TLS. wolfSSL also includes an OpenSSL compatibility interface with the most commonly used OpenSSL functions.

The Transport Layer Security (TLS) protocol provides the ability to secure communications across or inside networks. This comparison of TLS implementations compares several of the most notable libraries. There are several TLS implementations which are free software and open source.

DNS-based Authentication of Named Entities (DANE) is an Internet security protocol to allow X.509 digital certificates, commonly used for Transport Layer Security (TLS), to be bound to domain names using Domain Name System Security Extensions (DNSSEC).

The tables below compare cryptography libraries that deal with cryptography algorithms and have API function calls to each of the supported features.

References

1 2 "NSS:Release versions". Mozilla Wiki. Retrieved 7 November 2022.
↑ "NSS 3.14 release notes". MDN. Mozilla Developer Network. Retrieved 2015-09-01. The NSS license has changed to MPL 2.0. Previous releases were released under a MPL 1.1/GPL 2.0/LGPL 2.1 tri-license.
↑ "Cryptographic Module Validation Program: Certificate #7". NIST. 1997-08-29. module:Netscape Security Module 1, vendor: Netscape Communications Corporation
↑ "Cryptographic Module Validation Program: Certificate #248". NIST. 2002-09-04. module: Network Security Services, vendor: Sun Microsystems, Inc.
↑ "Cryptographic Module Validation Program: Certificate #1280". NIST. 2010-03-29. module: Network Security Services (NSS) Cryptographic Module, vendor: Sun Microsystems, Inc., Red Hat®, Inc. and Mozilla Foundation, Inc.
1 2 3 "FIPS". Mozilla Foundation. 2007-10-11. Retrieved 2020-07-03.
↑ "Does Fennec use NSS?". mozilla.dev.security.policy newsgroup. 2010-04-09. Retrieved 2020-07-03.
↑ "Overview of NSS: Open Source Crypto Libraries". Mozilla. 2020-03-02. Retrieved 2020-07-03.
↑ "NSS FAQ". Mozilla. 2019-11-21. Retrieved 2020-07-03.
↑ "Encryption Technologies Available in NSS 3.11". Mozilla. 2007-02-26. Retrieved 2020-07-03.
↑ "Releases List". Archived from the original on 2015-02-14.
↑ "AES-NI enhancements to NSS on Sandy Bridge systems". 2012-05-02. Retrieved 2013-05-17.
↑ "jss: Network Security Services for Java is a Java interface to NSS".

External links

Official website

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[release-overview-1] 1 2 "NSS:Release versions". Mozilla Wiki. Retrieved 7 November 2022.

[2] "NSS 3.14 release notes". MDN. Mozilla Developer Network. Retrieved 2015-09-01. The NSS license has changed to MPL 2.0. Previous releases were released under a MPL 1.1/GPL 2.0/LGPL 2.1 tri-license.

[3] "Cryptographic Module Validation Program: Certificate #7". NIST. 1997-08-29. module:Netscape Security Module 1, vendor: Netscape Communications Corporation

[4] "Cryptographic Module Validation Program: Certificate #248". NIST. 2002-09-04. module: Network Security Services, vendor: Sun Microsystems, Inc.

[5] "Cryptographic Module Validation Program: Certificate #1280". NIST. 2010-03-29. module: Network Security Services (NSS) Cryptographic Module, vendor: Sun Microsystems, Inc., Red Hat®, Inc. and Mozilla Foundation, Inc.

[moz_fips-6] 1 2 3 "FIPS". Mozilla Foundation. 2007-10-11. Retrieved 2020-07-03.

[7] "Does Fennec use NSS?". mozilla.dev.security.policy newsgroup. 2010-04-09. Retrieved 2020-07-03.

[moz_nss-8] "Overview of NSS: Open Source Crypto Libraries". Mozilla. 2020-03-02. Retrieved 2020-07-03.

[moz_moz_nss_faq-9] "NSS FAQ". Mozilla. 2019-11-21. Retrieved 2020-07-03.

[moz_nss_algo-10] "Encryption Technologies Available in NSS 3.11". Mozilla. 2007-02-26. Retrieved 2020-07-03.

[release-11] "Releases List". Archived from the original on 2015-02-14.

[12] "AES-NI enhancements to NSS on Sandy Bridge systems". 2012-05-02. Retrieved 2013-05-17.

[13] "jss: Network Security Services for Java is a Java interface to NSS".

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]

[13]