[Rpm-maint] [rpm-software-management/rpm] RFE: permit HMAC-XXX for digest XXX (#455)

[Jeff Johnson]

While we are on the topic of message digests ...

Much development time in RPM is spent handling multiple digests as well as moving away from older digest algorithms like MD2/MD5/SHA1 towards longer (and slower) SHA2 algorithms. While the rate of forward progress is mostly determined by adoption throughout the rpm (and distro) ecosystems, there are some simple implementations (I.e. HMAC) that can help mitigate the risk of collisions (and tampering of *.rpm content).

HMAC is essentially a transform, a digest of a digest with an inner/outer key salt, that can be implemented generically for all currently implemented digests in RPM.

HMAC provides better protection against length extension attacks on digests.

Legacy compatibility with existing versions of RPM could be handled either by backporting, or by careful phase-in.

One of the immediate usages might be to handle FIPS library generation/verification within rpm and rpmbuild, unifying RPM and FIPS verification.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/455
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20180626/0455ce93/attachment-0001.html>