[Top] [All Lists]

Re: Protocol Action: Wrapping an HMAC key with a Triple-DES Key or an AES Key to Proposed Standard

2003-04-10 00:09:46

This document defines a mechanism for "wrapping" (aka encrypting) an HMAC key
with either Triple-DES or the Advanced Encryption Standard (AES). Standards
already exist for wrapping Triple-DES keys in Triple-DES and AES keys in AES.
However no standard exists for wrapping HMAC keys, which is what this document

Actually a standard does exist for wrapping HMAC keys with any kind of key,
formerly RFC 3211, now a part of RFC 3369.  This was pointed out over a year
ago during the draft process, but ignored by the RFC authors.  So now we have
two incompatible ways to wrap HMAC keys, one in RFC 3369, the other in this
new RFC.