Key lengths for algorithms for variable-length keys

To: ietf-ssh%netbsd.org@localhost
Subject: Key lengths for algorithms for variable-length keys
From: Ben Harris <bjh21%bjh21.me.uk@localhost>
Date: Thu, 3 Mar 2005 00:35:37 +0000 (GMT)

transport-23, in section 7.2, says:

   128 bits (16 bytes) MUST be used for algorithms with variable-length
   keys.  The only variable key length algorithm defined in this
   document is arcfour).

Apart from the mismatched parenthesis, this seems like a strangepair of sentences. The "arcfour" algorithm as specified in section 6.3 isdefined to have a 128-bit key anyway. RC4 does generally support variablekey lengths, but so do Blowfish and CAST-128, so why aren't theymentioned?

If this stipulation is meant to apply to all future algorithms, it seemslike a particularly bad idea. Is it intended to prevent me defining"arcfour-256%bjh21.me.uk@localhost" to be RC4 with a 256-bit key, for instance? Ifnot, what does it do?


--
Ben Harris

Follow-Ups:
- Re: Key lengths for algorithms for variable-length keys
  - From: Niels Möller

Prev by Date: Re: signature formats
Next by Date: Re: Key lengths for algorithms for variable-length keys
Previous by Thread: signature formats
Next by Thread: Re: Key lengths for algorithms for variable-length keys
Indexes:

Home | Main Index | Thread Index | Old Index