AES-CMAC - MAC lengths other than 128 from Jim Schaad on 2014-02-21 (public-webcrypto@w3.org from February 2014)

From: Jim Schaad <ietf@augustcellars.com>
Date: Thu, 20 Feb 2014 19:55:58 -0800
To: "'Mark Watson'" <watsonm@netflix.com>, <public-webcrypto@w3.org>
Message-ID: <010b01cf2eb8$d43cfaa0$7cb6efe0$@augustcellars.com>

Starting with the editorial note in section 18.12.1 - I would be  a strong
advocate that MAC lengths other than 128 should be supported by the
algorithm.  There is a section of the security community (no comment as it
the correctness of its view) that states that security is increased by
truncating the MAC from 128 to 96 bits.  This is a feature that people will
want supported.

 

Jim

Received on Friday, 21 February 2014 03:58:03 UTC