[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: New identifiers allocated for AES_KEY_WRAP
Here are the tentative identifiers: In accordance to our standing rules, the following identifiers have been allocated for your proposal "AES Key Wrap Update 2". Mechanisms: Â#define CKM_AES_KEY_WRAP_PADÂÂÂÂÂ 0x0000210cUL Â#define CKM_RSA_AES_AES_KEY_WRAPÂ 0x0000210dUL Â#define CKM_ECDH_AES_AES_KEY_WRAP 0x0000210eUL This represents the following changes to your original proposal: --------------------------------------I've renamed the old onses to XXX_LEGACY. I want to point out that CKM_AES_KEY_WRAP_PAD is implemented in NSS as PKCS #7 wrap, not RFC5649. Whatever we do, there needs to be a mechanism that means PKCS #7 wrap as NSS and more specifically RHCS uses this method. CKM_AES_KEY_WRAP_KWP is NIST-800-38F, which is similar to but maybe not identical to RFC5649. I wonder if we should drop CKM_AES_KEY_WRAP_PAD and create CKM_AES_KEY_WRAP_PKCS7 and CKM_AES_KEY_WRAP_RFC5649?
bob
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]