- From: Jim Schaad <ietf@augustcellars.com>
- Date: Tue, 9 Jul 2013 16:55:48 -0700
- To: "'Richard Barnes'" <rbarnes@bbn.com>, "'Mike Jones'" <Michael.Jones@microsoft.com>
- Cc: "'Mark Watson'" <watsonm@netflix.com>, <public-webcrypto@w3.org>
Because I needed it for doing JOSE testing, I just looked and I am unable to implement AES-KW in "user" code because there is no ECB version of AES exposed as part of the WinCrypt API. I will also note that the 3994 and 5649 versions of the AES key wrap are very different in that one is not an extension of the other from a cryptographic point of view. They are totally different cryptographic algorithms. The version that most libraries have implemented is the 3994 version since that is what is used for CMS. If we do the 5649 version then we probably need to specify both versions. Jim > -----Original Message----- > From: Richard Barnes [mailto:rbarnes@bbn.com] > Sent: Tuesday, July 09, 2013 10:17 AM > To: Mike Jones > Cc: Mark Watson; public-webcrypto@w3.org > Subject: Re: Add algorithm for AES Key Wrap ? > > +1 to 5649. It's more general, and like 10 more lines of code. > > > > On Jul 8, 2013, at 8:28 PM, Mike Jones <Michael.Jones@microsoft.com> > wrote: > > > JOSE needs 3994. Please proceed to add that one. I'm ambivalent about > whether we need to add 5649 or not. > > > > -- Mike > > > > From: Mark Watson [mailto:watsonm@netflix.com] > > Sent: Monday, July 08, 2013 3:44 PM > > To: public-webcrypto@w3.org > > Subject: Add algorithm for AES Key Wrap ? > > > > All, > > > > Now that we have wrap and unwrap operations defined, should we add an > algorithm section for AES Key Wrap (RFC3394 and RFC5649) ? > > > > I'd be happy to draft the section if there is agreement. > > > > ...Mark > >
Received on Tuesday, 9 July 2013 23:57:12 UTC