W3C home > Mailing lists > Public > xml-encryption@w3.org > June 2002

Re: W3C Encryption Support for DES, RC2, and RC4 Symmetric Encryptio n Algorithms

From: Christian Geuer-Pollmann <geuer-pollmann@nue.et-inf.uni-siegen.de>
Date: Wed, 19 Jun 2002 14:48:13 +0200
To: Tom Gindin <tgindin@us.ibm.com>, Donald Eastlake 3rd <dee3@torque.pothole.com>
Cc: "Ahmed, Zahid" <zahid.ahmed@commerceone.com>, "'reagle@w3.org'" <reagle@w3.org>, "'xml-encryption@w3.org'" <xml-encryption@w3.org>, "'blaird@microsoft.com'" <blaird@microsoft.com>, Takeshi Imamura <IMAMU@jp.ibm.com>, "Sanfilippo, Joe" <joe.sanfilippo@commerceone.com>
Message-ID: <106642453.1024498093@clouseau>

Just another link on that topic:



--On Mittwoch, 19. Juni 2002 08:11 -0400 Tom Gindin <tgindin@us.ibm.com> 

>       Don:
>       Not all the missing algorithms are weak ones.  The entire class of
> password-based encryption algorithms are not defined.  Admittedly, there's
> no reason to make them mandatory to support, nor to define everything in
> sight (I've catalogued 15 PKCS#5 or PKCS#12 variants using SHA-1 as their
> digest, before AES came out), but a few of them would probably help.  I
> would suggest pkcs-12-PBEWithSha1AndTripleDESCBC and
> pbeWithSHAAnd3-KeyTripleDES-CC (see PKCS#12 section 6.3) for a start.
>             Tom Gindin
Received on Wednesday, 19 June 2002 08:55:50 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 23:13:09 UTC