RFC Errata
RFC 6030, "Portable Symmetric Key Container (PSKC)", October 2010
Source of RFC: keyprov (sec)
Errata ID: 7006
Status: Reported
Type: Editorial
Publication Format(s) : TEXT
Reported By: Flavio Poletti
Date Reported: 2022-06-26
Section 4.1 says:
ValueMAC: The <ValueMAC> element is populated with a Message Authentication Code (MAC) generated from the encrypted value in case the encryption algorithm does not support integrity checks. The example shown in Figure 2 illustrates the usage of the <Data> element with two child elements, namely <Secret> and <Counter>. Both elements carry a plaintext value within the <PlainValue> child element.
It should say:
ValueMAC: The <ValueMAC> element is populated with a Message Authentication Code (MAC) generated from the encrypted value in case the encryption algorithm does not support integrity checks. The example shown in Figure 2 illustrates the usage of the <Data> element with one child element <Secret>. This element carries a plaintext value within the <PlainValue> child element.
Notes:
There are two issues:
- the comment about the example should be in a standalone paragraph and not as a continuation of the explanation for ValueMAC
- the example in Figure 2 does *not* include <Counter>. The correction might be done to Figure 2, adding an XML fragment for <Counter> inside <Data>.