Skip to content

Commit

Permalink
Sign over the key handle, not info_sub, in HMAC-adapted KEM
Browse files Browse the repository at this point in the history
  • Loading branch information
@emlun
emlun committed Aug 29, 2024
1 parent a241a16 commit d6799ed
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions draft-bradleylundberg-cfrg-arkg.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -587,7 +587,7 @@ KEM-Encaps(pk, info) -> (k, c)
PRK: prk
info: 'ARKG-KEM-HMAC-mac.' || DST_ext || info
L: L
t = HMAC-Hash-128(K=mk, text=info_sub)
t = HMAC-Hash-128(K=mk, text=c')

k = HKDF-Expand with the arguments:
Hash: Hash
Expand Down Expand Up @@ -615,7 +615,7 @@ KEM-Decaps(sk, c, info) -> k
info: 'ARKG-KEM-HMAC-mac.' || DST_ext || info
L: L

t' = HMAC-Hash-128(K=mk, text=info_sub)
t' = HMAC-Hash-128(K=mk, text=c')
If t = t':
k = HKDF-Expand with the arguments:
Hash: Hash
Expand Down

0 comments on commit d6799ed

Please sign in to comment.