On Tue, Oct 22, 2013 at 6:46 PM, Jim Schaad <ietf(_at_)augustcellars(_dot_)com>
wrote:
Y = MAC(message, KeySymmetric)
Sig = Sign(message, KeyPrivate)
Both generate an output that can be verified. In the case of a signature
algorithm, the recipient uses a public key to verify the signature. In the
case of a MAC algorithm, the recipient uses the same symmetric key for
verification as was used for creation.
The Signed vCard format is agnostic about what sorts of keys should be
used for generating the HASH value - private, public, or symmetric
keys are all permitted. It seems like a bit of rephrasing of the
Description in section 4.4 of the draft is in order, in order to make
that clear.
Are there any keywords which are clearly neutral about types of keys
and hashes, which would be worth including?
Thank you for your time,
--
DataPacRat
"Then again, I could be wrong."
_______________________________________________
smime mailing list
smime(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/smime