[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [saag] Re: No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors

To: saag@lists.tislabs.com
Subject: Re: [saag] Re: No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors
From: Uri Blumenthal <uri@bell-labs.com>
Date: Sun, 28 Jul 2002 20:15:31 -0400
Cc: ipsec@lists.tislabs.com
In-Reply-To: <5.1.0.14.2.20020724140348.0212dd78@exna07.securitydynamics.com>
Organization: Lucent Technologies / Bell Labs
References: <D7D145EB4903D311985E00A0C9FC76FE02873462@SJCXCH01.hifn.com> <5.1.0.14.2.20020724140348.0212dd78@exna07.securitydynamics.com>
Reply-To: uri@bell-labs.com
Sender: owner-ipsec@lists.tislabs.com

On Wednesday 24 July 2002 14:13, Housley, Russ wrote:
> .............. In our view, SHA-1 should be
> used unless a longer output value is needed.  In the proposal, the
> hash value is truncated to 128 bits, so there is no benefit from the
> more complicated hash function.
>
> I would support the use of SHA-256 if the final output were longer
> than 160 bits.

And to emphasize - it's for the cases when MAC of longer than 160 bits 
is needed, NOT when more than 160 bits of key material....
-- 
Regards,
Uri-David
-=-=-<>-=-=-
<Disclaimer>

References:
- No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors
  - From: Russell Dietz <rdietz@hifn.com>
- Re: No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors
  - From: "Housley, Russ" <rhousley@rsasecurity.com>

Prev by Date: Re: [MSEC] Re: new version of ESP ID
Next by Date: Re: [MSEC] Re: new version of ESP ID
Prev by thread: Re: No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors
Next by thread: Re: [saag] No need for SHA-2 Packet Authentication - Open Letter to the WG and Area Directors
Index(es):
- Date
- Thread