On Mon, Jan 08, 2007 at 07:39:06PM -0800, Jouni Malinen wrote: > > Title : EAP Generalized Pre-Shared Key (EAP-GPSK) > > Author(s) : C. Clancy, H. Tschofenig > > Filename : draft-ietf-emu-eap-gpsk-02.txt > > Some comments..
And one more.. 5. Ciphersuites GKDF-X(Y, Z) was modified to use "Hash-Function" instead of MAC_Y. However, there does not seem to be any definition on which hash function is used here.. SHA-1 is mentioned as a required function and "SHAs" are recommended (whatever that means; SHA-256 and friends?), but the ciphersuite does not include information on which hash function is to be used here. Previously, this was covered by the "Integrity" column of Figure 3. Should the ciphersuite table be extended to define the hash function for GKDF now? In addition, this "SHA-1" here is the only need use of SHA-1 for EAP-GPSK. Do we really need it? Was this done because of possible NIST issues with the use of AES-CMAC for KDF? -- Jouni Malinen PGP id EFC895FA _______________________________________________ Emu mailing list [email protected] https://www1.ietf.org/mailman/listinfo/emu
