Francois:
The document describes how to use the NIST AES Key Wrap algorithm to
encrypt an HMAC key. The NIST algorithm requires an input that is a
multiple of 64-bits. The document describes the mechanism to pad the HMAC
key prior to encryption and remove the pad after decryption.
Russ
At 02:55 PM 2/12/2002 -0500,
Francois(_dot_)Rousseau(_at_)CSE-CST(_dot_)GC(_dot_)CA wrote:
Hi Russ,
Sorry I am not registered on the S/MIME mailing list, but feel free to
distribute your answer.
If I am not mistaken, it is my understanding that the AES Key Wrap Algorithm
from NIST can be used to wrap any key data and not just another AES key.
This is also consistent with section 2 of
draft-ietf-smime-aes-keywrap-00.txt. This implies that you would certainly
not need this new proposed Internet Draft for wrapping an HMAC key with an
AES key.
Regards,
Francois
---------------------------------
Francois Rousseau
IT Standards, Senior Advisor - CSE
Conseiller Superieur, Normes TI - CST
francois(_dot_)rousseau(_at_)cse-cst(_dot_)gc(_dot_)ca
(613) 991-8364
Edward Drake Building
1500 Bronson, Ottawa, Ontario, K1G 3Z4