[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Problem in draft FIPS `CRYPTOGRAPHIC SERVICE CALLS'

To: [email protected] (Cypherpunks Mailing List)
Subject: Problem in draft FIPS `CRYPTOGRAPHIC SERVICE CALLS'
From: [email protected] (Matthew Gream)
Date: Sat, 6 Aug 94 15:59:18 EST
Organization: University of Technology, Sydney.
Sender: [email protected]


Anyone producing cryptographic software elements should take notice of
the recent FIPS draft standard on `cryptographic service calls' dated
23 May 1994. 

It attempts to define data structures and "function" calls towards the
goal of making better interoperability between applications and crypto
"libraries". However, you'll notice that both DSA and RSA modulus sizes
are constrained to a `MODULUS_SIZE ' of 64 `BYTE's (unsigned char).
This permissible maximum of 512 bits is too small, and a violation of
FIPS-186 s.4.1. amongst others.

I like this FIPS, but it would be pretty useless if it contained the
above restriction. If you're also a software developer, make a comment
to NIST on the issue, so they do change it.

Matthew.

-- 
Matthew Gream <[email protected]> -- Consent Technologies, (02) 821-2043
Disclaimer: From? \nem speaking_for(Organization?)

Prev by Date: Re: Remailer ideas
Next by Date: (none)
Prev by thread: Re: A Helpful Tip for Impatient Souls
Next by thread: Re: Problem in draft FIPS `CRYPTOGRAPHIC SERVICE CALLS'
Index(es):
- Date
- Thread