[Cryptography] Literature on reusing same key for AES / HMAC?

Allen allenpmd at gmail.com
Wed Nov 4 21:36:22 EST 2015


 > I'm looking at a very specific issue, where the same secret key is used
with AES-CTR for encryption,
> and then later that same key is used for signing the ciphertext with
HMAC-SHA1.

I don't even know why you would be tempted to do that when you could simply
set the AES key to sha256(secret || "AES") and the HMAC key to
sha256(secret || "HMAC")
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20151104/67615a1a/attachment.html>


More information about the cryptography mailing list