OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

pkcs11 message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [pkcs11] Proposal: CKM_AES_XCBC_MAC and CKM_AES_XCBC_MAC_96

As mentioned before I generally have a problem with extra mechanisms to deal with truncated MAC values.   But if this goes to ballot, I won't oppose it. 

I do wish we could come up with a general agreement on whether these will be permitted or not. Maybe a separate ballot on that particular topic?

Mike



On 7/31/2013 5:00 PM, Oscar K So Jr. wrote:
Proposal: CKM_AES_XCBC_MAC and CKM_AES_XCBC_MAC_96

This is a signing mechanism with a CK_AES key. It takes no parameters.

Extended CBC mode (Ciphertext Block Chaining) for MAC.  RFC 3566.
Reference: http://www.ietf.org/rfc/rfc3566.txt

For CKM_AES_XCBC_MAC, the signature length is 128 bits, and for CKM_AES_XCBC_MAC_96, the signature length is 96 bits. 



---------------------------------------------------------------------
To unsubscribe from this mail list, you must leave the OASIS TC that 
generates this mail.  Follow this link to all your TCs in OASIS at:
https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]