Public Service Announcement:
NIST also has requirements for Key Derivation Functions. You cannot just invent your own KDF slap it in front of AES-GCM, and still pretend that you're FIPS compliant.
Sadly. Because it would improve security if you could.
Sophie Schmieg /
npub10q…r4hg8
2024-03-27 15:44:34
Author Public Key
npub10qaqswg07tsrztrauf69ylup6qj50kef7e4ut7t0vganygk0t2rsyr4hg8Seen on
wss://relay.nostr.bandPublished at
2024-03-27 15:44:34Event JSON
{
"id": "56931ca9fbe2565cd382cd8557021a2fad30c40771a6bfa928e52a82e6416bb4",
"pubkey": "783a08390ff2e0312c7de274527f81d02547db29f66bc5f96f623b3222cf5a87",
"created_at": 1711554274,
"kind": 1,
"tags": [
[
"proxy",
"https://infosec.exchange/users/sophieschmieg/statuses/112168420950812058",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://infosec.exchange/users/sophieschmieg/statuses/112168420950812058",
"pink.momostr"
]
],
"content": "Public Service Announcement:\n\nNIST also has requirements for Key Derivation Functions. You cannot just invent your own KDF slap it in front of AES-GCM, and still pretend that you're FIPS compliant.\n\nSadly. Because it would improve security if you could.",
"sig": "bfa427b4aa2d2ca63fc0fbbdaedd110eeb04c1eeed0dc49c237cf59d831cc846192b230abfded2cd0bc8898ce7c50ddfc7571e559d0a94e595b3495ef60cd4ff"
}