[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [TLS] Use of SHA-0 versus SHA-1 in SSL v3.0 and TLS v1.0 and TLS v1.1
Robert Withers wrote:
> I am confused about some of the terminology in the specifications. For
> instance, in the TLS v1.0 spec, in some places it specifies SHA-1 and
> in others it merely says SHA. This is especially true of the SSL v3.0
> spec. Something (I don't recall what) turned me on to the possibility
> that some of the SHA references may actually be for SHA-0. Is there
> anything to this?
No, none of the SHA references are to SHA-0. The glossary is already clear
about this:
SHA
The Secure Hash Algorithm is defined in FIPS PUB 180-1. It
produces a 20-byte output. Note that all references to SHA
actually use the modified SHA-1 algorithm. [SHA]
(in the TLS 1.2 draft, the reference is to FIPS PUB 180-2.)
--
David Hopwood <david.nospam.hopwood@xxxxxxxxxxxxxxxx>
_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls