[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: NEW ISSUE: Describe minimum acceptable lengths for P_SHA1 inputs
Protocol: ws-trust <http://docs.oasis-open.org/ws-sx/ws-trust/yyyymm/ws-trust-wd-03.pdf> Artifact: spec Type: design Title: Describe minimum acceptable lengths for P_SHA1 inputs Description: Section 6.2.4 of WS-Trust describes the use of the P_SHA1 function to generate computed keys. It does not provide guidance on minimum size of entropy required for this function. My crypto 101 guess is that a minimum of 20 bytes is required for each parameter but I would like more informed guidance and have it included in the table. Is there any advantage to choosing longer strings for Ent(req) or Ent(res)? Related issues: Proposed Resolution:
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]