HBrock
commented
1 year ago Remove kdf and len from KemCiphertextInfo and introduce a KEMBMParameter Alg OID containing kdf, len, and mac.
Closed HBrock closed 1 year ago
HBrock
commented
1 year ago Remove kdf and len from KemCiphertextInfo and introduce a KEMBMParameter Alg OID containing kdf, len, and mac.
HBrock
commented
1 year ago done, see #26
Is the sentence
It SHOULD be the maximum key length of the MAC function and MUST NOT be larger that 255*Nh of the KDF where Nh is the output size of the KDF.still correct and needed. It came from HPKE and it requires the sender of the ciphertext to know the MAC function to be used for protection.