It was “HMAC-SHA256” in draft 9 (10 Sep 2007), but had changed to “HMAC-256” in
draft 10 (13 Oct 2007). The change is looking more like a typo.
___
specs mailing list
specs@openid.net
http://openid.net/mailman/listinfo/specs
Is the correct value for the openid.assoc_type parameter really “HMAC-256”, and
not “HMAC-SHA256”? That is what the spec (draft 12) says, though it is somewhat
counter-intuitive given the algorithm is named “HMAC-SHA256” and the other
algorithm “HMAC-SHA1” uses the same string for the algorithm
