11.25.1. MD5
The MD5 mechanism, denoted CKM_MD5, is a mechanism for message digesting, following the MD5 message-digest algorithm defined in RFC 1321.
It does not have a parameter.
Constraints on the length of input and output data are summarized in the following table. For single-part digesting, the data and the digest may begin at the same location in memory.
Table 92, MD5: Data Length
Function
|
Data length
|
Digest length
|
C_Digest
|
any
|
16
| 11.25.2. General-length MD5-HMAC
The general-length MD5-HMAC mechanism, denoted CKM_MD5_HMAC_GENERAL, is a mechanism for signatures and verification. It uses the HMAC construction, based on the MD5 hash function. The keys it uses are generic secret keys.
It has a parameter, a CK_MAC_GENERAL_PARAMS, which holds the length in bytes of the desired output. This length should be in the range 0-16 (the output size of MD5 is 16 bytes). Signatures (MACs) produced by this mechanism will be taken from the start of the full 16-byte HMAC output.
Table 93, General-length MD5-HMAC: Key And Data Length
Function
|
Key type
|
Data length
|
Signature length
|
C_Sign
|
generic secret
|
any
|
0-16, depending on parameters
|
C_Verify
|
generic secret
|
any
|
0-16, depending on parameters
|
Share with your friends: |
