[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Digest length truncation, "algorithm differentiator"?
Markku,
>Is my interpretation correct:
>
> If for some weird reason someone wanted to use more bits of
> those digests, one would have to define a new algorithm number
> for the SA to use? (e.g. the current PFKEY numbers MD5HMAC=2
> and SHA1HMAC=3 refer explicitly to the trunctated digests
> and the truncation amount is "algorithm differentiator" in
> PFKEY terms?)
Yes, if one wanted to use more bits from the hash functions, a new
algorithm ID would have to be defined.
Steve
References: