Update NEWS file.

diff --git a/NEWS b/NEWS
index 77e3d5c68c5b5554c651effa01a7ec5b5dc23a5b..18f041112411ef4c04f503672c4342321f05e07a 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -5,7 +5,7 @@ NEWS for the Nettle 3.5 release
        * Nettle's gcm_crypt will now call the underlying block cipher
          to process more than one block at a time. This is not a
          change to the documented behavior, but unfortunately breaks
-         assumptions accidentally made in gnutls, up to and including
+         assumptions accidentally made in GnuTLS, up to and including
          version 3.6.1.
 
        Bug fixes:
@@ -19,6 +19,9 @@ NEWS for the Nettle 3.5 release
          octet per block cipher operation), contributed by Dmitry
          Eremin-Solenikov.
 
+       * Support for CMAC (RFC 4493), contributed by Nikos
+         Mavrogiannopoulos.
+
        Optimizations:
 
        * Improved performance of the x86_64 AES implementation using
@@ -32,8 +35,16 @@ NEWS for the Nettle 3.5 release
          Extension to also handle GCM mode efficiently contributed
          by Nikos Mavrogiannopoulos.
 
-       * New x86_64 implementation of sha1, for processors supporting
-         the sha_ni instructions.
+       * New x86_64 implementation of sha1 and sha256, for processors
+         supporting the sha_ni instructions. Speedup of 3-5 times on
+         affected processors.
+
+       * Improved parameters for the precomputation of tables used
+         for ecc signatures. Roughly 10%-15% speedup of the ecdsa
+         sign operation using the secp_256r1, secp_384r1 and
+         secp_521r1 curves, and 25% speedup of ed25519 sign
+         operation, benchmarked on x86_64. Table sizes unchanged,
+         around 16 KB per curve.
 
        Miscellaneous: