Burger, Kobus K wrote:
> I have noticed a couple of discrepancies between mainframe support for MDC2
> and OpenSSL's support:
>
> * Mainframe supports MDC2 with various keys (The documentation notes that
> the default key is the same as the one used by OpenSSL) - Openssl has a
> single key hardcoded.
I don't understand -- MDC2 doesn't have a key. It takes input data
and produces a hash value. You could do HMAC with it in which case it
would have a key, I suppose.
> * The Mainframe MDC2 blocksize is 16, OpenSSL's blocksize is 8 bytes.
MDC2 works in conjunction with a block cipher. It takes inputs which
are the size of the block cipher's blocks and produces an output which
is twice that. So if you use DES as the block cipher you will have
the OpenSSL block size. If you used an AES candidate, say, you would
end up with the mainframe block size.
OpenSSL seems to support MDC2 with DES for use in signature
algorithms, but I don't know who uses this or where it is documented.
--
Pete
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
