Re: keyed-MD5 placement of secret

["William Allen Simpson" <bill.simpson@um.cc.umich.edu>]

I asked the Security Area this many months ago.  We discussed it on the
M-Bone wrt IPv6, and I believe it was discussed in other fora.  Here is
the decision:

> Date: Sun, 11 Sep 94 11:34:19 -0400
> From: Jeffrey I. Schiller <jis@mit.edu>
> .... I would recommend the front of
> the data. in that fashion you can precompute the internal MD5 state (i.e.,
> initialize MD5, feed it the key and then snapshot its internal state)
> in order to get better performance.
>
Now, unless the Security Area reverses itself, and changes the standard
in SNMP also, that is what we will use in the AH implementations going
forward as we speak.

There is absolutely no reason to do it differently for each MD5 usage.

Bill.Simpson@um.cc.umich.edu

---

Follow-Ups:

• Re: keyed-MD5 placement of secret
• From: "Perry E. Metzger" <perry@imsi.com>
• Re: keyed-MD5 placement of secret
• From: uri@watson.ibm.com

---

• Prev by Date: on a more serious note... do we want MD5?
• Next by Date: Re: AH-MD5
• Prev by thread: Re: on a more serious note... do we want MD5?
• Next by thread: Re: keyed-MD5 placement of secret
• Index(es):
  • Main
  • Thread