RFC Errata
RFC 4634, "US Secure Hash Algorithms (SHA and HMAC-SHA)", July 2006
Note: This RFC has been obsoleted by RFC 6234
Source of RFC: IETF - NON WORKING GROUPArea Assignment: sec
Errata ID: 2445
Status: Held for Document Update
Type: Technical
Publication Format(s) : TEXT
Reported By: Alfred Hoenes
Date Reported: 2006-08-13
Held for Document Update by: Sean Turner
Date Held: 2010-08-06
Section 8.3 says:
On mid-page 75, the comment within the function hmacReset says: * The HMAC transform looks like: * * SHA(K XOR opad, SHA(K XOR ipad, text)) * * where K is an n byte key. * ipad is the byte 0x36 repeated blocksize times * opad is the byte 0x5c repeated blocksize times * and text is the data being protected. It should say: * The HMAC transform looks like: * * SHA(K XOR opad, SHA(K XOR ipad, text)) * | * where K is an n byte key, 0-padded to a total of blocksize bytes, | * ipad is the byte 0x36 repeated blocksize times, | * opad is the byte 0x5c repeated blocksize times, * and text is the data being protected. Rationale: Without the addition, the 'XOR' operations in the formula are undefined. Additionally, punctuation is made uniform.