[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ms-cryptoapi
Subject:    Re: SSL_RSA_WITH_RC4_128_SHA
From:       John Banes <jbanes () EXCHANGE ! MICROSOFT ! COM>
Date:       2000-09-25 17:09:07
[Download RAW message or body]


Nope, the key derivation scheme is the same. The only difference that
comes to mind is that SSL3 MAC keys using MD5 are 16 bytes long, and
those using SHA are 20 bytes long. Maybe this is the problem?


-----Original Message-----
From: yoav [mailto:redler2@NETVISION.NET.IL]
Sent: Sunday, September 24, 2000 7:10 AM
To: CryptoAPI@DISCUSS.MICROSOFT.COM
Subject: SSL_RSA_WITH_RC4_128_SHA


We have developed a CSP that works, among others, with
the cipher suite: SSL_RSA_WITH_RC4_128_MD5. This works fine, but when we
get
into a session using SSL_RSA_WITH_RC4_128_SHA - we fail. In the
documentation it is stated that the algorithm that should be used when
building the master key from the pre master key is:
MD5(....+SHA(...)) + MD5(...+SHA(...)) + MD5(... + SHA(...));
Does this algorithm change when using the SHA cipher suite rather than
the
MD5 one? (for example, should we switch the MD5 with SHA and vice
versa?)
The same question applies to creating the session keys from the master
key.

Thanks.

----------------------------------------------------------------
Users Guide http://msdn.microsoft.com/workshop/essentials/mail.asp
contains important info including how to unsubscribe.  Save time, search
the archives at http://discuss.microsoft.com/archives/index.html

----------------------------------------------------------------
Users Guide http://msdn.microsoft.com/workshop/essentials/mail.asp
contains important info including how to unsubscribe.  Save time, search
the archives at http://discuss.microsoft.com/archives/index.html

[prev in list] [next in list] [prev in thread] [next in thread]