-
For FCS_CKM.5, there are specific requirements on TwoStep KDFs:
** If an AES-CMAC (with key length 128, 192, or 256 bits) is used in the randomness extraction step, then AES-CMAC with a 128-bit key i…
-
Users often asks about limitations of KDF to handle large dataframes
The User Guide should contain some recommendations and snippets of code to improve User Path here
- some benchmarks on real-w…
-
In https://github.com/openpgp-pqc/draft-ehlen-openpgp-nist-bp-comp/issues/10#issuecomment-2220090284 Quynh states that the current construction with a key derivation step in ECDH-KEM is not NIST compl…
-
### Describe the enhancement you're suggesting.
A significant enhancement for the NFC app would be an interface to allow libraries/shared objects to be registered (or loaded from a fixed SD card path…
-
The ordering of the KEM combiner inputs must be adjusted in the fashion of
```
SHA3-256(counter || ss1 || ss2 || )
```
(see https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-56Cr2…
-
**Is your feature request related to a problem? Please describe.**
The current default setting is AES-KDF with 6,000 transformation rounds. It is obviously too low without need. For your information,…
ghost updated
3 months ago
-
tldr; An executable tool that helps to choose KDF params. I have a lot more details in my head, too lazy to serialise.
-
This KDF seems to be a homebrew thing https://github.com/skeeto/enchive/blob/master/src/enchive.c#L664
why not use scrypt?
how was this particular KDF designed? is it based on some literature? n…
-
Tried to run the below example testcase from(https://github.com/openssl/openssl/blob/openssl-3.0/test/recipes/30-test_evp_data/evpkdf_tls13_kdf.txt) with "openssl kdf" command in openssl-3.0.13.
E…
-
**Issue:**
The Test activity for NDcPP 3.0 Test Activity FCS_TLSS_EXT.1.4 Test 4 part ii cannot be completed as written. The Test activity specifies that the modified pre-shared key is to be sent as …