Re: Platform Support for JWA Crypto Algorithms from Wan-Teh Chang on 2012-10-31 (public-webcrypto@w3.org from October 2012)

From: Wan-Teh Chang <wtc@google.com>
Date: Wed, 31 Oct 2012 10:00:45 -0700
To: Ryan Sleevi <sleevi@google.com>
Cc: Axel.Nennker@telekom.de, Michael.Jones@microsoft.com, jose@ietf.org, public-webcrypto@w3.org
Message-ID: <CALTJjxF80RCv-b=GGJo6VQnUY8JSP6QP4AAE0FrU0DwORktbjw@mail.gmail.com>

On Mon, Oct 29, 2012 at 4:23 PM, Ryan Sleevi <sleevi@google.com> wrote:
>
> However, as an NSS developer, I do not see your presented argument as a
> reason not to use Concat-KDF, and Concat-KDF would be more preferable, as a
> NIST-blessed KDF, since NSS cares especially for NIST-blessed algorithms.

I think HKDF (hash-based key derivation function) is also worth considering.
It is specified in RFC 5869 and is also blessed by NIST in SP 800-56C.

Wan-Teh

Received on Wednesday, 31 October 2012 17:01:19 UTC