Subject: Re: [pkcs11] Groups - HMAC-SHA-2 Pseudorandom Functions for PBKDF2 uploaded
On 02/06/14 22:53, Wan-Teh Chang wrote:
/Submitter's message/ Hi, I just submitted a simple proposal to add four HMAC-SHA-2 pseudorandom functions for PBKDF2, specified in PKCS #5 v2.1. Currently only a HMAC-SHA-1 PRF is defined, and there is strong interest in using a HMAC-SHA-256 PRF with PBKDF2.
I was tempted to ask for the addition of HMAC-SHA512/t variants of the; since SHA512/t where t is 256 is often faster to calculate on 64bit processors than SHA256. However in this particular case I think the proposal is fine as it is.
I am wondering if it is not too late to incorporate this into PKCS #11 v2.40.
I have use cases for if it is. that don't have a native SHA256 instruction like SPARC T4 onwards has and Intel is reported to be getting in a future release.
-- Darren J Moffat