Merge pull request #21 from Yubico/fix-mac-text

Sign over the key handle, not info_sub, in HMAC-adapted KEM
Yubico · Oct 2, 2024 · 123f33f · 123f33f
2 parents 0ae724e + d6799ed
commit 123f33f
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/draft-bradleylundberg-cfrg-arkg.md b/draft-bradleylundberg-cfrg-arkg.md
@@ -587,7 +587,7 @@ KEM-Encaps(pk, info) -> (k, c)
         PRK: prk
         info: 'ARKG-KEM-HMAC-mac.' || DST_ext || info
         L: L
-    t = HMAC-Hash-128(K=mk, text=info_sub)
+    t = HMAC-Hash-128(K=mk, text=c')
 
     k = HKDF-Expand with the arguments:
         Hash: Hash
@@ -615,7 +615,7 @@ KEM-Decaps(sk, c, info) -> k
         info: 'ARKG-KEM-HMAC-mac.' || DST_ext || info
         L: L
 
-    t' = HMAC-Hash-128(K=mk, text=info_sub)
+    t' = HMAC-Hash-128(K=mk, text=c')
     If t = t':
         k = HKDF-Expand with the arguments:
             Hash: Hash