Re: crypto-ISSUE-29 (block modes): Handling of block encryption modes and padding [Web Cryptography API] from Wan-Teh Chang on 2012-08-23 (public-webcrypto@w3.org from August 2012)

From: Wan-Teh Chang <wtc@google.com>
Date: Wed, 22 Aug 2012 18:43:02 -0700
To: Ryan Sleevi <sleevi@google.com>
Cc: Web Cryptography Working Group <public-webcrypto@w3.org>
Message-ID: <CALTJjxFnEq4UZnqRSJjar+08FYvSzKoB3w3zbjgt7YiyjuD8FA@mail.gmail.com>

The Algorithm for a Key and the Algorithm for a CryptoOperation
probably should be allowed to differ.

For example, we may want an AES key whose algorithm is simply "AES",
and only specify the mode of operation (CBC, CTR, or GCM) in the
algorithm of a CryptoOperation.  Whether the mode of operation is
specified as part of the algorithm name or as an algorithm parameter
doesn't matter to me.

As another example, the hash algorithm used in a signature doesn't
seem to be a parameter of a Key algorithm, but must be a parameter of
the CryptoOperation algorithm. An ECDSA P-256 key should be able to
generate signatures with SHA-256 and SHA-512/256.

So, Key algorithms and CryptoOperation algorithms probably should be
drawn from two different name spaces.

Wan-Teh

Received on Thursday, 23 August 2012 01:43:29 UTC