[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: CKA_VALUE_LEN and C_UnwrapKey
Following on from the brief discussion of this at the phone meeting on 10th June it seems to me that the right behaviour is: - CKA_VALUE_LEN is required when unwrapping using a mechanism that doesn’t allow the size of the plaintext to be deduced (e.g. *_CBC or *_ECB) - CKA_VALUE_LEN must not be given when the mechanism does allow the size of the plaintext to be deduced (e.g. *_CBC_PAD or RSA_OAEP). There isn’t a simple footnote for that, but we could add this wording underneath table 47. How does that strike people? Note that unfortunately I can’t attend tonight’s phone meeting, but if it’s discussed tonight I’d be keen to hear the outcome. Best, Graham Steel +33 (0)9 72 42 35 31
|
Attachment:
signature.asc
Description: Message signed with OpenPGP using GPGMail
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]