At 09:45 AM 11/19/99 +0000, Peter Gutmann wrote:
Carlisle Adams <carlisle(_dot_)adams(_at_)entrust(_dot_)com> writes:
>"More importantly, however, the security of this information type rests
on the
>entropy of the user-selected password, which is typically quite low. Pass
>phrases (as opposed to simple passwords) are STRONGLY RECOMMENDED,
although it
>should be recognized that even with pass phrases it will be difficult to use
>this recipient information type to derive a KEK with sufficient entropy to
>properly protect a 128-bit (or higher) CEK."
Is it worth going into this sort of thing?
Yes, it is. That's exactly what the security considerations section is for.
Some of them are really pedantic, but that's OK. Novice implementors
actually read those sections.
--Paul Hoffman, Director
--Internet Mail Consortium