Dmitry Eremin-Solenikov dbaryshkov@gmail.com writes:
ср, 25 дек. 2019 г. в 14:31, Niels Möller nisse@lysator.liu.se:
If we define a single nettle_mac for each supported (no-nonce) mac algorithm, what should the key size be for each algorithm? Using the underlying block size for the hmac algorithms seems to be a bit overkill. What key sizes are used in practice? Does it make sense to use key size equal to digest size (at least, that's what used for hmac in the ssh protocol)?
Same goes for TLS. Key size = digest size for HMAC.
I've pushed Daiki's patches with struct nettle_mac to a branch move-nettle_mac, with a few changes: Drop the nonce things (and hence also umac). Change the hmac algorithms to all use digest size as the key size. And I've updated hmac tests to use this interface when possible.
Regards, /Niels