In
<f5833273385bb34f99288b3648c4f06f19c6c15...@exch-c2.corp.cloudmark.com>,
on 01/16/2012
at 03:44 PM, "Murray S. Kucherawy" <[email protected]> said:
>b) Add even more explanatory text so that the reader has it clear
>that we are not attempting to completely secure something here, and
>acknowledge fully that there are weaknesses in our algorithm. (The
>Wikipedia page for HMAC gives a pretty good description of the
>comparison and attacks.)
That's my preferred option.
--
Shmuel (Seymour J.) Metz, SysProg and JOAT
Atid/2 <http://patriot.net/~shmuel>
We don't care. We don't have to care, we're Congress.
(S877: The Shut up and Eat Your spam act of 2003)
_______________________________________________
marf mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/marf
