-----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Yoav Nir Sent: Saturday, July 21, 2012 1:51 PM To: Dan Harkins Cc: [email protected]; Johannes Merkle; Tero Kivinen Subject: Re: [IPsec] Using ECC Brainpool curves with ipsec
> Not much, but not all PRF functions are hashes. What hash will you use if > your PRF is AES-XCBC? What if it's GHash? > Sure we could extend both those to be hash functions (just use AES-XCBC with > a fixed key) but we've never done this > before, and I don't have any idea if the cryptographers will approve. Cryptographers would certainly not approve; it's easy to generate preimages for AES-XCBC or GHash with a public key. _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
