[Ach] Vote for new Cipherstring B [Was: Issue with OpenSSL >0.9.8l]

ianG iang at iang.org
Wed Jun 4 15:54:21 CEST 2014

On 4/06/2014 14:14 pm, Philipp Gühring wrote:
> Hi,
> I dont't mind dropping *256, but I currently believe that SHA384 is the
> only secure hash in the SHA2 family, all other hashes leak their
> complete internal state. Length-Extension-Attack...

Point.  But, is a length extension attack relevant to HMAC use?  Doesn't
the HMAC shield from this very attack?


More information about the Ach mailing list