Support for 64 byte (512 bit) AES-SIV keys

paulmillr / noble-ciphers

Audited & minimal JS implementation of Salsa20, ChaCha and AES

https://paulmillr.com/noble

MIT License

214 stars 8 forks source link

Support for 64 byte (512 bit) AES-SIV keys #37

Closed httpjamesm closed 3 months ago

httpjamesm commented 3 months ago

According to RFC 5297, AES-SIV keys are supposed to be 64 bytes in length, such as a concatenated master key and MAC key, however, the siv() function rejects anything over 32 bytes. Is there a way to pass in 64 bytes of data, or does it need to be updated?

paulmillr commented 3 months ago

We don't support SIV, only GCM-SIV which is different.