OASIS Open Document Format for Office Applications (OpenDocument) TC

Re: [office] Fwd: OASIS and encryption

  • 1.  Re: [office] Fwd: OASIS and encryption

    Posted 09-01-2004 13:49
     MHonArc v2.5.0b2 -->
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    
    

    office message

    [Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


    Subject: Re: [office] Fwd: OASIS and encryption


    Hi,
    
    Michael Brauer wrote:
    > [...]
    > The PBKDF2 pseudo-random function is indeed HMAC-SHA-1, as defined in 
    > the PKCS#5 v2.0 document in appendices A.2 and B.1.1:
    > [...]
    > If it helps, we of course might add a sentence to chapter 16.3 
    > clarifying that actually HMAC-SHA-1 is used within PBKDF2.
    
    After reviewing PKCS#5 I am of the opinion that we should do something 
    in order to better define the key dervation process. If some 
    implementation would for some reason choose an other PRNG function for 
    salt creation, documents encrypted by that implementation could not be 
    decrypted by an implementation using the now standard HMAC function.
    
    I see two possibilities: we might either want to specify HMAC as a MUST 
    in the specification, or we might include a new property that holds a 
    name identfying the method used to generate the salt in the manifest.
    Since crypto related algorithms are sometimes obsoleted because of 
    discovered weaknesses (MD5 or SHA-0 in recent times), specifying the 
    encryption and key dervation mechanism in the manifest might be the way 
    to go.
    
    What are your opinions on this?
    
    Cheers,
    ~Lars
    
    -- 
    Lars Oppermann <lars.oppermann@sun.com>               Sun Microsystems
    Software Engineer - StarOffice                           Sachsenfeld 4
    Phone: +49 40 23646 959                                D-20097 Hamburg
    Fax:   +49 40 23646 550                  http://www.sun.com/staroffice
    


    [Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]