RE: [Cfrg] Re: [saag] Bad day at the hash function factory

["Christian Huitema" <huitema at windows.microsoft.com>]

> 	That said, there are a number of reasons that make it sensible
to
> migrate
> existing uses of Keyed-MD5 or HMAC-MD5 to HMAC-SHA-1.  (One not yet
> stated
> here is that some governments (plural) insist on SHA-1 rather than MD5
> if
> one wants one's implementation to obtain government certification
and/or
> accrediation.  FIPS 140-2 is an example of such a certification.)

Actually, some governments insist on the use of locally specified
algorithm. SHA-1 is a US standard. China or Europe may well want to use
something else.

-- Christian Huitema

_______________________________________________
Cfrg mailing list
Cfrg at ietf.org
https://www1.ietf.org/mailman/listinfo/cfrg