Closed DDvO closed 1 year ago
Regardless what is specified in the config file (even an invalid algorithm), some reasonable value is used - I guess, 1.2.840.113549.2.9 (hmacWithSHA256). This may be an issue already at LightweightCmpRa level.
For PasswordBasedEncryption please utilize PRF, not MAC
Good point. So I'll add to the config README that of the LwCmpRa that macAlgorithm is relevant only for password-based message protection.
macAlgorithm
Done
Regardless what is specified in the config file (even an invalid algorithm), some reasonable value is used - I guess, 1.2.840.113549.2.9 (hmacWithSHA256). This may be an issue already at LightweightCmpRa level.