PBKDF1
27 views
Skip to first unread message
Axel Nennker
Feb 5, 2009, 5:30:49 PM2/5/09
to ICF-WG-OASIS, anders....@telia.com, be...@google.com
Microsoft defined that we use PBKDF1 to encrypt the PIN protected card
(ISIP ed5 table above line 1509) and the encrypted store (table above
line 1584).
http://www.oasis-open.org/committees/documents.php?wg_abbrev=imi
Consider this in respect to this paragraph from rfc2898 section 5.
http://www.ietf.org/rfc/rfc2898.txt
"Two functions are specified in this section: PBKDF1 and PBKDF2.
PBKDF2 is recommended for new applications; PBKDF1 is included only
for compatibility with existing applications, and is not
recommended
for new applications.
"
The rfc is dated from 2000 so I guess that ISIP is a "new
application".
Comments from a crypto expert? Ben? Anders?
-Axel
(ISIP ed5 table above line 1509) and the encrypted store (table above
line 1584).
http://www.oasis-open.org/committees/documents.php?wg_abbrev=imi
Consider this in respect to this paragraph from rfc2898 section 5.
http://www.ietf.org/rfc/rfc2898.txt
"Two functions are specified in this section: PBKDF1 and PBKDF2.
PBKDF2 is recommended for new applications; PBKDF1 is included only
for compatibility with existing applications, and is not
recommended
for new applications.
"
The rfc is dated from 2000 so I guess that ISIP is a "new
application".
Comments from a crypto expert? Ben? Anders?
-Axel
Reply all
Reply to author
Forward
0 new messages