[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re[2]: Proposals for key-ed MD5

To: ipsec@ans.net, hugo@watson.ibm.com, "Housley, Russ" <housley@spyrus.com>
Subject: Re[2]: Proposals for key-ed MD5
From: "burt" <burt@RSA.COM (Burt Kaliski)>
Date: Fri, 07 Apr 95 14:57:07 PST
Cc: jis@mit.edu, galvin@tis.com, matt@RSA.COM, mihir@watson.ibm.com

Some notes on Russ's observation:

There's no reason that hardware couldn't have MD5(K|MD5(K|text)) or 
whatever is chosen for keyed-hashing as a primitive, so it's still 
possible to do everything with one command.

Also, the key K may be stored in the peripheral device, so some 
special handling will be required --- the MD5 primitive would not be 
enough, instead and MD5(stored key,.) primitive would be needed.

However, it's nice to reduce the total number of primitives in a 
system, so reusing the same MD5 command for hashing as for 
keyed-hashing has its advantages.

-- Burt


______________________________ Reply Separator _________________________________
Subject: Re: Proposals for key-ed MD5
Author:  ,"Housley, Russ" <housley@spyrus.com> at INTERNET
Date:    4/7/95 8:00 AM


Received: by ccmail from RSA.COM

Prev by Date: Re: Comments on latest IPSP drafts
Next by Date: problems with ESP with host-pair keying
Prev by thread: Re: Proposals for key-ed MD5
Next by thread: Manditory DES was - Re[2]: IPv6 Security Last
Index(es):
- Main
- Thread