<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"Segoe UI";
panose-1:2 11 5 2 4 2 4 2 2 3;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
.MsoChpDefault
{mso-style-type:export-only;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:70.85pt 70.85pt 2.0cm 70.85pt;}
div.WordSection1
{page:WordSection1;}
--></style></head><body lang=DE link=blue vlink="#954F72"><div class=WordSection1><p class=MsoNormal>Looking at the patch it seems obvious that this functionality was intentional at least for having a PKCS11 MAC. Do we really want to removbe that Option and if yes des it require some form of aproval?</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>(I think the change is good in General but that case Needs to be decided).</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Since this is relaed, using a whitebox prf would also allow to do precomputing of the first hmac block outside of the Iteration, thats an algorithmic speedup* which attackers implementations surely feature.</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Gruss</p><p class=MsoNormal>Bernd</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>* OPT-02 in <a href="https://afiuorio.github.io/assets/thesis_afi_msc.pdf" target="_blank"><span style='font-size:10.0pt;font-family:"Segoe UI",sans-serif;background:white;text-decoration:none'>https://afiuorio.github.io/assets/thesis_afi_msc.pdf</span></a> </p><p class=MsoNormal>-- <br>http://bernd.eckenfels.net</p><p class=MsoNormal><o:p> </o:p></p><div style='mso-element:para-border-div;border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p class=MsoNormal style='border:none;padding:0cm'><b>Von: </b><a href="mailto:jamil.j.nimeh@oracle.com">Jamil Nimeh</a><br><b>Gesendet: </b>Donnerstag, 14. März 2019 16:36<br><b>An: </b><a href="mailto:security-dev@openjdk.java.net">OpenJDK Dev list</a><br><b>Betreff: </b>RFR 8218723: SecretKeyFactory.getInstance( algo_, provider_ ) ignoresthe provider argument.</p></div><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Hello all,</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>This review will change the SunJCE implementation of PBKDF2 so that it </p><p class=MsoNormal>always uses the SunJCE version of the PRF algorithm internally.</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Webrev: http://cr.openjdk.java.net/~jnimeh/reviews/8218723/webrev.01/</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>JBS: https://bugs.openjdk.java.net/browse/JDK-8218723</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>CSR: https://bugs.openjdk.java.net/browse/JDK-8220531</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal><o:p> </o:p></p></div></body></html>