Thus spake John Viega: > When I looked at the AES API, it looked like there was no way to > specify a block size independently of the key size. Is that > intentional?
The NIST FIPS specifies AES with a 128-bit block size. Rijndael can be used in many other ways, but there is a significant performance loss in flexible implementations. 192- and 256-bit blocks may be added in the future, but there's higher priorities at the moment. > Additionally, with respect to counter mode, it might be best to > implement external to the EVP proper interface, just like HMAC. There > are a few issues I see that make counter mode a bit different from > other modes: Already under discussion, though in reference to ALL modes :) S -- Stephen Sprunk "So long as they don't get violent, I want to CCIE #3723 let everyone say what they wish, for I myself have K5SSS always said exactly what pleased me." --Albert Einstein ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
