Document:
Add descriptions of the SHAx KDFs for ECC.

Draft (A preliminary unapproved sketch, outline, or version.)

Details

Submitted By Mr. Robert Relyea on 2017-05-24 11:10 pm UTC

Publication Type

None at this time.

Group / Folder

OASIS PKCS 11 TC / Working Drafts

Modified by

Not modified.

Copy

This document is not a copy.

Technical Contact

None at this time.

Download Count

172

Download Agreement

None at this time.

Description

Issue #19


Definitions of CKD_SHA224_KDF, CKD_SHA256_KDF, CKD_SHA384_KDF, CKD_SHA512_KDF and CKD_CPDIVERSIFY_KDF are completely new in v2.40e1 headers.
This may be a leftover from v2.30 headers (see #2).


CKD_SHA224_KDF, CKD_SHA256_KDF, CKD_SHA384_KDF, CKD_SHA513_KDF are listed in table 34 in seciont 2.3.8 of the spec, but no text describes how they are use.
CKD_CPDIVERSIFY_KDF is described in GOSTR3410_DERIVE_PARAMS.

Recommendation: Add CKD_CPDIVERSIFY_KDF to the GOST R 34.10-2001 (section 2.45) Definitions, add CKD_SHAx_KDF to section 2.3.2 definitions. Add more general descriptions for CKD_SHAx_KDF to secion 2.3.8 rather than just CKD_SHA1_KDF

This solves the SHAx_KDF portion of this issue (I've included the SHA3 changes, which are also affected by this change).