Re: Error in RFC 3217
- From: Mike Amling <dr-ahmadinejad@xxxxxxxxxxxx>
- Date: Wed, 01 Aug 2007 19:28:50 -0500
henrick@xxxxxxxxxxxx wrote:
> There is an error in the test vectors for RC2 Key Wrap given in RFC
> 3217. The specification states that RC2 should be used with a 128 bit
> key and 128 effective key bits. The test vectors are however generated
> using RC2 with a 128 bit key but only 40 effective key bits (which BTW
> was the default for MS CryptoAPI prior to Windows XP).
>
> I don't know if R. Housley is reading these groups, but clearly this
> is an error that should be corrected.
I've never known an RFC to be corrected. At best, they get replaced.
> The algorithms specified in RFC 3217 are primarily used for S/MIME. If
> you have ever used S/MIME for encrypting email using a certificate
> with a DH public key and the RC2-CBC encryption algorithm, chances are
> you only got 40 bits of security even if you opted for 128 bit
> encryption.
I used to send S/MIME from MS Outlook, and the Netscape e-mail client receiving it always said it had only 40-bit encryption.
--Mike Amling
.
- Follow-Ups:
- Re: Error in RFC 3217
- From: henrick
- Re: Error in RFC 3217
- From: Thomas Pornin
- Re: Error in RFC 3217
- References:
- Error in RFC 3217
- From: henrick
- Error in RFC 3217
- Prev by Date: they are protecting in terms of the toilet now, won't think crys later
- Next by Date: some strategys will be embarrassing puzzled sciences
- Previous by thread: Error in RFC 3217
- Next by thread: Re: Error in RFC 3217
- Index(es):
Relevant Pages
|
|
