W3C home > Mailing lists > Public > w3c-dist-auth@w3.org > July to September 1996

[Fwd: Returned mail: Host unknown (Name server: w3.or: host not found)]

From: Alan Freier <freier@netscape.com>
Date: Thu, 19 Sep 1996 15:04:07 -0700
Message-ID: <3241C357.23D3@netscape.com>
To: w3c-dist-auth@w3.org
Whoops! Cut and paste one character short...
-- 
Alan O. Freier		Corporate Cynic
<freier@netscape.com>	(415) 937-3638 (work)

attached mail follows:


The original message was received at Thu, 19 Sep 1996 11:43:21 -0700
from localhost [127.0.0.1]

   ----- The following addresses had delivery problems -----
<w3c-dist-auth@w3.or>  (unrecoverable error)

   ----- Transcript of session follows -----
550 <w3c-dist-auth@w3.or>... Host unknown (Name server: w3.or: host not found)

   ----- Original message follows -----

attached mail follows:


Here's the definition of HMAC for those that are interested.

HMAC = <hash>(key XOR pad1 + <hash>(key XOR pad2 + data))

  replace <hash> with whatever (MD5, SHA, etc)
  pad1 and pad2 are well-known (ie, documented)

It's really just a combination of known items in such a way that the
security of the result does not rely on the <hash> involved having a
strong "collision intractable" property.

In my opinion, the pending downfall of MD5 is probably overplayed, and
its use in HMAC is perfectly acceptable. But those who play devil's
advocate roles in front of less enlightened audiences might use this
argument against emerging technologies. Fighting such mischief is a time
consuming hassle.

AO
-- 
Alan O. Freier		Corporate Cynic
<freier@netscape.com>	(415) 937-3638 (work)
Received on Thursday, 19 September 1996 18:04:22 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 2 June 2009 18:43:41 GMT