Network Working Group J. Kapp Request for Comments: 2286 Reaper Technologies Category: Informational February 1998
Network Working Group J. Kapp Request for Comments: 2286 Reaper Technologies Category: Informational February 1998
Test Cases for HMAC-RIPEMD160 and HMAC-RIPEMD128
HMAC-RIPEMD160和HMAC-RIPEMD128的测试用例
Status of this Memo
本备忘录的状况
This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited.
本备忘录为互联网社区提供信息。它没有规定任何类型的互联网标准。本备忘录的分发不受限制。
Copyright Notice
版权公告
Copyright (C) The Internet Society (1998). All Rights Reserved.
版权所有(C)互联网协会(1998年)。版权所有。
Abstract
摘要
This document provides two sets of test cases for HMAC-RIPEMD160 and HMAC-RIPEMD128, respectively. HMAC-RIPEMD160 and HMAC-RIPEMD128 are two constructs of the HMAC [HMAC] message authentication function using the RIPEMD-160 and RIPEMD-128 [RIPE] hash functions. The test cases and results provided in this document are meant to be used as a conformance test for HMAC-RIPEMD160 and HMAC-RIPEMD128 implementations.
本文档分别为HMAC-RIPEMD160和HMAC-RIPEMD128提供了两套测试用例。HMAC-RIPEMD160和HMAC-RIPEMD128是使用RIPEMD-160和RIPEMD-128[RIME]散列函数的HMAC[HMAC]消息身份验证函数的两种构造。本文档中提供的测试用例和结果旨在用作HMAC-RIPEMD160和HMAC-RIPEMD128实现的一致性测试。
The general method for constructing a HMAC message authentication function using a particular hash function is described in section 2 of [HMAC].
[HMAC]第2节描述了使用特定哈希函数构造HMAC消息认证函数的一般方法。
In sections 2 and 3 test cases for HMAC-RIPEMD160 and HMAC-RIPEMD128, respectively are provided. Each case includes the key, the data, and the result. The values of keys and data are either hexadecimal numbers (prefixed by "0x") or ASCII character strings in double quotes. If a value is an ASCII character string, then the HMAC computation for the corresponding test case DOES NOT include the trailing null character ('\0') in the string.
第2节和第3节分别提供了HMAC-RIPEMD160和HMAC-RIPEMD128的测试用例。每个案例都包括密钥、数据和结果。键和数据的值可以是十六进制数(前缀为“0x”)或双引号中的ASCII字符串。如果值是ASCII字符串,则相应测试用例的HMAC计算不包括字符串中的尾随空字符('\0')。
The C source code of the functions used to generate HMAC-RIPEMD160 and HMAC-RIPEMD128 results is listed in the Appendix. Please Note that the functions provided are implemented in such a way as to be simple and easy to understand as a result they are not optimized in any way. The C source code for computing HMAC-MD5 can be found in [MD5].
附录中列出了用于生成HMAC-RIPEMD160和HMAC-RIPEMD128结果的函数的C源代码。请注意,所提供的功能以简单易懂的方式实现,因此未以任何方式进行优化。计算HMAC-MD5的C源代码可以在[MD5]中找到。
test_case = 1 key = 0x0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b key_len = 20 data = "Hi There" data_len = 8 digest = 0x24cb4bd67d20fc1a5d2ed7732dcc39377f0a5668
test_case = 1 key = 0x0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b key_len = 20 data = "Hi There" data_len = 8 digest = 0x24cb4bd67d20fc1a5d2ed7732dcc39377f0a5668
test_case = 2 key = "Jefe" key_len = 4 data = "what do ya want for nothing?" data_len = 28 digest = 0xdda6c0213a485a9e24f4742064a7f033b43c4069
test_case = 2 key = "Jefe" key_len = 4 data = "what do ya want for nothing?" data_len = 28 digest = 0xdda6c0213a485a9e24f4742064a7f033b43c4069
test_case = 3 key = 0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa key_len = 20 data = 0xdd repeated 50 times data_len = 50 digest = 0xb0b105360de759960ab4f35298e116e295d8e7c1
test_case = 3 key = 0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa key_len = 20 data = 0xdd repeated 50 times data_len = 50 digest = 0xb0b105360de759960ab4f35298e116e295d8e7c1
test_case = 4 key = 0x0102030405060708090a0b0c0d0e0f10111213141516171819 key_len = 25 data = 0xcd repeated 50 times data_len = 50 digest = 0xd5ca862f4d21d5e610e18b4cf1beb97a4365ecf4
test_case = 4 key = 0x0102030405060708090a0b0c0d0e0f10111213141516171819 key_len = 25 data = 0xcd repeated 50 times data_len = 50 digest = 0xd5ca862f4d21d5e610e18b4cf1beb97a4365ecf4
test_case = 5 key = 0x0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c key_len = 20 data = "Test With Truncation" data_len = 20 digest = 0x7619693978f91d90539ae786500ff3d8e0518e39 digest-96 = 0x7619693978f91d90539ae786
测试用例=5键=0x0C0C0C0C0C0C0C0C0C0C0C0C0C0C0C0C0C0C0C0C0C0C键=20 data=“带截断的测试”数据摘要=0x7619693978f91d90539ae786500ff3d8e0518e39摘要-96=0x7619693978f91d90539ae786
test_case = 6 key = 0xaa repeated 80 times key_len = 80 data = "Test Using Larger Than Block-Size Key - Hash Key First" data_len = 54 digest = 0x6466ca07ac5eac29e1bd523e5ada7605b791fd8b
test_case = 6 key = 0xaa repeated 80 times key_len = 80 data = "Test Using Larger Than Block-Size Key - Hash Key First" data_len = 54 digest = 0x6466ca07ac5eac29e1bd523e5ada7605b791fd8b
test_case = 7 key = 0xaa repeated 80 times
测试用例=7键=0xaa重复80次
key_len = 80 data = "Test Using Larger Than Block-Size Key and Larger Than One Block-Size Data" data_len = 73 digest = 0x69ea60798d71616cce5fd0871e23754cd75d5a0a
key_len = 80 data = "Test Using Larger Than Block-Size Key and Larger Than One Block-Size Data" data_len = 73 digest = 0x69ea60798d71616cce5fd0871e23754cd75d5a0a
test_case = 1 key = 0x0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b key_len = 16 data = "Hi There" data_len = 8 digest = 0xfbf61f9492aa4bbf81c172e84e0734db
test_case = 1 key = 0x0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b key_len = 16 data = "Hi There" data_len = 8 digest = 0xfbf61f9492aa4bbf81c172e84e0734db
test_case = 2 key = "Jefe" key_len = 4 data = "what do ya want for nothing?" data_len = 28 digest = 0x875f828862b6b334b427c55f9f7ff09b
test_case = 2 key = "Jefe" key_len = 4 data = "what do ya want for nothing?" data_len = 28 digest = 0x875f828862b6b334b427c55f9f7ff09b
test_case = 3 key = 0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa key_len = 16 data = 0xdd repeated 50 times data_len = 50 digest = 0x09f0b2846d2f543da363cbec8d62a38d
test_case = 3 key = 0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa key_len = 16 data = 0xdd repeated 50 times data_len = 50 digest = 0x09f0b2846d2f543da363cbec8d62a38d
test_case = 4 key = 0x0102030405060708090a0b0c0d0e0f10111213141516171819 key_len = 25 data = 0xcd repeated 50 times data_len = 50 digest = 0xbdbbd7cf03e44b5aa60af815be4d2294
test_case = 4 key = 0x0102030405060708090a0b0c0d0e0f10111213141516171819 key_len = 25 data = 0xcd repeated 50 times data_len = 50 digest = 0xbdbbd7cf03e44b5aa60af815be4d2294
test_case = 5 key = 0x0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c key_len = 16 data = "Test With Truncation" data_len = 20 digest = 0xe79808f24b25fd031c155f0d551d9a3a digest-96 = 0xe79808f24b25fd031c155f0d
测试用例=5键=0x0C0C0C0C0C0C0C0C0C0C0C键=16 data=“带截断的测试”数据\u len=20摘要=0xe79808f24b25fd031c155f0d551d9a3a摘要-96=0xe79808f24b25fd031c155f0d
test_case = 6 key = 0xaa repeated 80 times key_len = 80 data = "Test Using Larger Than Block-Size Key - Hash Key
test\u case=6 key=0xaa重复80次key\u len=80 data=“使用大于块大小的键进行测试-散列键
First" data_len = 54 digest = 0xdc732928de98104a1f59d373c150acbb
First" data_len = 54 digest = 0xdc732928de98104a1f59d373c150acbb
test_case = 7 key = 0xaa repeated 80 times key_len = 80 data = "Test Using Larger Than Block-Size Key and Larger Than One Block-Size Data" data_len = 73 digest = 0x5c6bec96793e16d40690c237635f30c5
test_case = 7 key = 0xaa repeated 80 times key_len = 80 data = "Test Using Larger Than Block-Size Key and Larger Than One Block-Size Data" data_len = 73 digest = 0x5c6bec96793e16d40690c237635f30c5
This document raises no security issues. Discussion on the strength of the HMAC construction can be found in [HMAC].
本文件不涉及任何安全问题。关于HMAC结构强度的讨论见[HMAC]。
References
工具书类
[HMAC] Krawczyk, H., Bellare, M., and R. Canetti, "HMAC: Keyed-Hashing for Message Authentication", RFC 2104, February 1997.
[HMAC]Krawczyk,H.,Bellare,M.,和R.Canetti,“HMAC:用于消息身份验证的键控哈希”,RFC 2104,1997年2月。
[MD5] Rivest, R., "The MD5 Message-Digest Algorithm", RFC 1321, April 1992.
[MD5]Rivest,R.,“MD5消息摘要算法”,RFC 13211992年4月。
[OG] Oehler, M., and R. Glenn, "HMAC-MD5 IP Authentication with Replay Prevention", RFC 2085, February 1997
[OG]Oehler,M.和R.Glenn,“具有重放预防的HMAC-MD5 IP认证”,RFC 2085,1997年2月
[CG] Chang, S., and R. Glenn, "Test Cases for HMAC-MD5 and HMAC-SHA-1", RFC 2202, September 1997.
[CG]Chang,S.和R.Glenn,“HMAC-MD5和HMAC-SHA-1的测试案例”,RFC 2202,1997年9月。
[RIPE] Dobbertin, H., Bosselaers A., and Preneel, B. "RIPEMD-160: A Strengthened Version of RIPEMD" April 1996
[成熟]Dobbertin,H.,Bosselaers A.,和Preneel,B.“RIPEMD-160:RIPEMD的强化版”,1996年4月
Author's Address
作者地址
Justin S. Kapp Reaper Technologies The Post Office, Dunsop Bridge Clitheroe, Lancashire. BB7 3BB. United Kingdom
贾斯汀S.卡普收割机技术公司,兰开夏郡邓索普桥克利瑟罗邮局。BB7 3BB。大不列颠联合王国
EMail: skapp@reapertech.com
EMail: skapp@reapertech.com
Appendix
附录
This code which implements HMAC-RIPEMD160 using an existing RIPEMD-160 library. It assumes that the RIPEMD-160 library has similar API's as those of the MD5 code described in RFC 1321. The code for HMAC-MD5, is similar, this HMAC-MD5 code is also listed in RFC 2104. To adapt this example to produce the HMAC-RIPEMD128 then replace each occurance of 'RMD160' with 'RMD128'.
此代码使用现有RIPEMD-160库实现HMAC-RIPEMD160。它假设RIPEMD-160库具有与RFC1321中描述的MD5代码类似的API。HMAC-MD5的代码与此类似,此HMAC-MD5代码也在RFC 2104中列出。为了适应本示例,生成HMAC-RIPEMD128,然后将每次出现的“RMD160”替换为“RMD128”。
#ifndef RMD160_DIGESTSIZE #define RMD160_DIGESTSIZE 20 #endif
#如果NDEF RMD160#U DIGESTSIZE#定义RMD160#U DIGESTSIZE 20#endif
#ifndef RMD128_DIGESTSIZE #define RMD128_DIGESTSIZE 16 #endif
#如果NDEF RMD128#U DIGESTSIZE#定义RMD128#U DIGESTSIZE 16#endif
/* HMAC_RMD160 implements HMAC-RIPEMD160 */
/* HMAC_RMD160 implements HMAC-RIPEMD160 */
void HMAC_RMD160(input, len, key, keylen, digest) unsigned char *input; /* pointer to data stream */ int len; /* length of data stream */ unsigned char *key; /* pointer to authentication key */ int keylen; /* length of authentication key */ unsigned char *digest; /* resulting MAC digest */ { RMD160_CTX context; unsigned char k_ipad[65]; /* inner padding - key XORd with ipad */ unsigned char k_opad[65]; /* outer padding - key XORd with opad */ unsigned char tk[RMD160_DIGESTSIZE]; int i;
void HMAC_RMD160(input, len, key, keylen, digest) unsigned char *input; /* pointer to data stream */ int len; /* length of data stream */ unsigned char *key; /* pointer to authentication key */ int keylen; /* length of authentication key */ unsigned char *digest; /* resulting MAC digest */ { RMD160_CTX context; unsigned char k_ipad[65]; /* inner padding - key XORd with ipad */ unsigned char k_opad[65]; /* outer padding - key XORd with opad */ unsigned char tk[RMD160_DIGESTSIZE]; int i;
/* if key is longer than 64 bytes reset it to key=SHA1(key) */ if (keylen > 64) { RMD160_CTX tctx;
/* if key is longer than 64 bytes reset it to key=SHA1(key) */ if (keylen > 64) { RMD160_CTX tctx;
RMD160Init(&tctx); RMD160Update(&tctx, key, keylen); RMD160Final(tk, &tctx);
RMD160Init(&tctx); RMD160Update(&tctx, key, keylen); RMD160Final(tk, &tctx);
key = tk; keylen = RMD160_DIGESTSIZE; }
key = tk; keylen = RMD160_DIGESTSIZE; }
/* The HMAC_SHA1 transform looks like:
/* The HMAC_SHA1 transform looks like:
RMD160(K XOR opad, RMD160(K XOR ipad, text))
RMD160(K XOR opad,RMD160(K XOR ipad,文本))
where K is an n byte key ipad is the byte 0x36 repeated 64 times opad is the byte 0x5c repeated 64 times and text is the data being protected */
where K is an n byte key ipad is the byte 0x36 repeated 64 times opad is the byte 0x5c repeated 64 times and text is the data being protected */
/* start out by storing key in pads */ memset(k_ipad, 0x36, sizeof(k_ipad)); memset(k_opad, 0x5c, sizeof(k_opad));
/* start out by storing key in pads */ memset(k_ipad, 0x36, sizeof(k_ipad)); memset(k_opad, 0x5c, sizeof(k_opad));
/* XOR key with ipad and opad values */ for (i=0; i<keylen; i++) { k_ipad[i] ^= key[i]; k_opad[i] ^= key[i]; }
/* XOR key with ipad and opad values */ for (i=0; i<keylen; i++) { k_ipad[i] ^= key[i]; k_opad[i] ^= key[i]; }
/* perform inner RIPEMD-160 */
/* perform inner RIPEMD-160 */
RMD160Init(&context); /* init context for 1st pass */ RMD160Update(&context, k_ipad, 64); /* start with inner pad */ RMD160Update(&context, input, len); /* then text of datagram */ RMD160Final(digest, &context); /* finish up 1st pass */
RMD160Init(&context); /* init context for 1st pass */ RMD160Update(&context, k_ipad, 64); /* start with inner pad */ RMD160Update(&context, input, len); /* then text of datagram */ RMD160Final(digest, &context); /* finish up 1st pass */
/* perform outer RIPEMD-160 */ RMD160Init(&context); /* init context for 2nd pass */ RMD160Update(&context, k_opad, 64); /* start with outer pad */ /* then results of 1st hash */ RMD160Update(&context, digest, RMD160_DIGESTSIZE); RMD160Final(digest, &context); /* finish up 2nd pass */
/* perform outer RIPEMD-160 */ RMD160Init(&context); /* init context for 2nd pass */ RMD160Update(&context, k_opad, 64); /* start with outer pad */ /* then results of 1st hash */ RMD160Update(&context, digest, RMD160_DIGESTSIZE); RMD160Final(digest, &context); /* finish up 2nd pass */
memset(k_ipad, 0x00, sizeof(k_ipad)); memset(k_opad, 0x00, sizeof(k_opad)); }
memset(k_ipad, 0x00, sizeof(k_ipad)); memset(k_opad, 0x00, sizeof(k_opad)); }
Full Copyright Statement
完整版权声明
Copyright (C) The Internet Society (1998). All Rights Reserved.
版权所有(C)互联网协会(1998年)。版权所有。
This document and translations of it may be copied and furnished to others, and derivative works that comment on or otherwise explain it or assist in its implementation may be prepared, copied, published and distributed, in whole or in part, without restriction of any kind, provided that the above copyright notice and this paragraph are included on all such copies and derivative works. However, this document itself may not be modified in any way, such as by removing the copyright notice or references to the Internet Society or other Internet organizations, except as needed for the purpose of developing Internet standards in which case the procedures for copyrights defined in the Internet Standards process must be followed, or as required to translate it into languages other than English.
本文件及其译本可复制并提供给他人,对其进行评论或解释或协助其实施的衍生作品可全部或部分编制、复制、出版和分发,不受任何限制,前提是上述版权声明和本段包含在所有此类副本和衍生作品中。但是,不得以任何方式修改本文件本身,例如删除版权通知或对互联网协会或其他互联网组织的引用,除非出于制定互联网标准的需要,在这种情况下,必须遵循互联网标准过程中定义的版权程序,或根据需要将其翻译成英语以外的其他语言。
The limited permissions granted above are perpetual and will not be revoked by the Internet Society or its successors or assigns.
上述授予的有限许可是永久性的,互联网协会或其继承人或受让人不会撤销。
This document and the information contained herein is provided on an "AS IS" basis and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING TASK FORCE DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.
本文件和其中包含的信息是按“原样”提供的,互联网协会和互联网工程任务组否认所有明示或暗示的保证,包括但不限于任何保证,即使用本文中的信息不会侵犯任何权利,或对适销性或特定用途适用性的任何默示保证。