On 08/03/10 19:13, Brian Smith wrote:
Martin Paljak wrote:
At the same time, isn't GCM only present in the latest 2.30 draft?
Yes. And, actually, I think I found a problem with the GCM interface that seems
to make it impossible to use the PKCS#11 interface in a FIPS-140-compliant
manner. In particular, NIST SP800-38D requires that the IV for the GCM mode be
generated and maintained within the cryptographic boundary, and I think this
require conflicts with the draft PKCS#11 interface.
I hope to write about it next week.
--
Brian
Please, do write. There is a chance to change this before v2.30 gets finalized.
--
Konstantin
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
