[PATCH] PKCS#5 PBKDF2
Werner Koch
wk@gnupg.org
Tue, 03 Dec 2002 10:19:13 +0100
On Tue, 03 Dec 2002 02:53:07 +0100, Simon Josefsson said:
> Not sure if this is suitable for libgcrypt, but it seems that even a
> complete PKCS#5 implementation would be so small it doesn't make sense
> to create a libpkcs5. Only tested on alphaev68-dec-osf5.1 and
> i686-pc-linux-gnu.
I think that key derive functions make sense in libgcrypt becuase they
are basic crypto building blocks. However we should not add just
pkcs5 but introduce a generic key derive API much like we have it for
the other building blocks. Would you like to work on it?
> On a similar topic, what do you think about adding a CRC32 "message
> digest"? It might be useful to have, even though it is not the most
> secure message digest, and the libgcrypt framework fits rather nicely.
Doing CRC32 is pretty easy to code, so there is no real advantage.
OTOH, I agree that it fits perfectly into the message digest framework
and it is useful for certain applications. I don't know of any OIDs
assigned to CRC algorithms, so I can assign this one from the GNU arc:
/* GNU.crcAlgorithm.crc32 */
"1.3.6.1.4.1.11591.14.1"
Please tell if if you want to use it.
Salam-Shalom,
Werner