[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AES with SHA-2

To: ipsec@lists.tislabs.com
Subject: Re: AES with SHA-2
From: joern@dfintra.f-secure.com
Date: Tue, 25 Sep 2001 23:16:59 +0200
In-Reply-To: <005c01c145f6$680a9580$1e64a8c0@jshaul>
Sender: owner-ipsec@lists.tislabs.com

At 15:15 25.09.2001 -0400, you wrote:

 >Hi all&
 >
 >
 >
 >             I wonder what the consensus is on using SHA-2 with AES for 
 > ESP. Are you all implementing such a transform? Do you plan to?
 >
 >
 >
 >Thanks!
 >
 >
 >
 >Josh Shaul

No, we're not. What's the point of using sha-2 in ESP anyway?
We are using a truncated (96 bits) output of sha-1 or md5 today.
Using sha-2-96 would be utterly pointless, because the only
advantage of sha-2 over sha-1 is the longer output.

Before you plan anything, you should wonder how many bits you want.
More than 96 bit, apparently. But how much more? Then, wouldn't
sha-1-128 or sha-1-160 be enough for you?

I'm happy with 96 bits.....

Jörn Sierwald

References:

AES with SHA-2

From: "Josh Shaul" <josh@safenet-inc.com>

Prev by Date: AES with SHA-2
Next by Date: Re: cisco rsa key - openssl read
Prev by thread: AES with SHA-2
Next by thread: SAD/SPD question
Index(es):
- Main
- Thread