[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Digest length truncation, "algorithm differentiator"?



Markku,

>Is my interpretation correct:
>
>	If for some weird reason someone wanted to use more bits of
>	those digests, one would have to define a new algorithm number
>	for the SA to use? (e.g. the current PFKEY numbers MD5HMAC=2
>	and SHA1HMAC=3 refer explicitly to the trunctated digests
>	and the truncation amount is "algorithm differentiator" in
>	PFKEY terms?)

Yes, if one wanted to use more bits from the hash functions, a new
algorithm ID would have to be defined.

Steve


References: