"Blake Ramsdell" <blake(_dot_)ramsdell(_at_)worldtalk(_dot_)com> writes:
-----Original Message-----
From: Dr Stephen Henson
[mailto:shenson(_at_)drh-consultancy(_dot_)demon(_dot_)co(_dot_)uk]
Sent: Tuesday, September 01, 1998 2:12 PM
To: ietf-smime(_at_)imc(_dot_)org
Subject: Re: RC2 keylength strawpoll
I think the only potential problem is using DH and RSA. It is quite
reasonable to assume that someone might want to send encrypted mail to
people some of whom have RSA certificates and some of whom have DH.
In this case the easiest way to deal with things is to have
RC2 use the
same standard with DH and RSA for its key.
Just so we're clear, my understanding is that the MEK works fine in both
DH and RSA right now as-is. The only question is regarding the KEK
which is not used in RSA, and is the only thing that is currently
ambiguous due to the mechanism by which those keys are generated.
The use of the current RC2 MEK mechanism should work fine in both DH and
RSA environments, as well as a mix of the two.
Unfortunately, this is incorrect. Russ's Key wrapping algorithm
does not provide a way to determing the length of the wrapped MEK.
-Ekr
--
[Eric Rescorla Terisa Systems, Inc.]
"Put it in the top slot."