[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [saag] No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors

To: Russell Dietz <rdietz@hifn.com>
Subject: Re: [saag] No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors
From: Mats Näslund <mats.naslund@era.ericsson.se>
Date: Thu, 18 Jul 2002 12:27:47 +0200
CC: IPSec Working Group <ipsec@lists.tislabs.com>, SAAG <saag@lists.tislabs.com>
Organization: Ericsson Research
References: <D7D145EB4903D311985E00A0C9FC76FE02873462@SJCXCH01.hifn.com>
Sender: owner-ipsec@lists.tislabs.com


Hi

Russell Dietz wrote:

> 
> Unfortunately, the current draft is misleading in this regard:
> "Using the SHA-256 block cipher, with its increased block size (512 bits)
> and increased hash length (256 bits), provides the new algorithm with the
> ability to withstand continuing advances in crypto-analytic techniques and
> computational capability.  It also allows less frequent re-keying, which is
> useful for high-speed networks and high-volume applications."
> It is our belief that, as currently defined in DRAFT-SHA-256, the use of
> SHA-256 does not achieve any of these stated goals.

If you want to view SHA-256 as a block cipher, the "512" is to be
thought of
as the key-size and the 160/256 (SHA1/SHA256) corresponds to the block
size.

Best,

/Mats

References:
- No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors
  - From: Russell Dietz <rdietz@hifn.com>

Prev by Date: Re: [saag] No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors
Next by Date: RE: One base SOI ID? Humm
Prev by thread: Re: [saag] Re: No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors
Next by thread: Re: No need for SHA-2 Packet Authentication - Open Letter to the WGand Area Directors
Index(es):
- Date
- Thread