Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

why not use hkdf instead of expand_message #335

Closed
stef opened this issue Feb 3, 2022 · 2 comments
Closed

why not use hkdf instead of expand_message #335

stef opened this issue Feb 3, 2022 · 2 comments

Comments

@stef
Copy link

stef commented Feb 3, 2022

i found this #137 previous issue, and i'm confused was it already used for the expand message part, or was this something else?
@kwantam
Copy link
Collaborator

kwantam commented Feb 3, 2022

Thanks for the question! (FYI, we discussed this in #202.) The high-level summary is:

  • efficiency on embedded systems, and
  • paranoia about domain separation of the underlying hash functions.

Note that it may be possible to specify expand_message in terms of HKDF (though it would require some assumptions and/or care for domain separation) and, once that's done, build a suite on top of it.

@stef
Copy link
Author

stef commented Feb 3, 2022

aah. thank you i did look for hkdf while searching the issues, but this issue i missed. my question is answered!

@stef stef closed this as completed Feb 3, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@stef @kwantam