- From: <bugzilla@jessica.w3.org>
- Date: Thu, 03 Mar 2016 23:25:58 +0000
- To: public-webcrypto@w3.org
https://www.w3.org/Bugs/Public/show_bug.cgi?id=27425 --- Comment #2 from jimsch <ietf@augustcellars.com> --- I am not aware of any applications that are using the NIST version of HKDF rather than the IETF version. CONCAT is the NIST KDF function that people refer to. The issue raised in point 3 is not an issue for the IETF HKDF function as the salt and info fields are used in different locations and are not concatenated together. (Even for the NIST case there is nothing wrong with the label containing a null character if it was length prefixed or of a known fixed length). I would also vote to make this be the IETF version and start forgetting that NIST has done this. The IETF version is cleaner, better designed and has better security proofs. -- You are receiving this mail because: You are on the CC list for the bug.
Received on Thursday, 3 March 2016 23:26:01 UTC