> All: DLES seems to be faster than ElGamal, and for our purposes
> (small messages) takes up less wire space as well (86 bytes less). (and
> the peasants rejoiced)
Only somewhat related... The DHAES specification requires that input from
the assymetric algorithm go through a hash function, which produces a
number of bytes. Half the bytes go to the MAC key, and half to make the
symmetric (AES) cipher key.
This has been bothering me, since SHA1 produces 160 bits (20 bytes) of
output, while we really need 256 bits (32 bytes) of data, so we can give
the HMAC a 128 bit key and AES a 128 bit key without overlap.
I'd like to bring in SHA-256 as a second hash function in
Freenet.crypt, since this would obviously provide the full 256 bits we
need. The algorithm is pretty simple and so should not impeed other
implementations.
Scott
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
URL:
<https://emu.freenetproject.org/pipermail/devl/attachments/20010913/c9420366/attachment.pgp>
