On Mon, Nov 27, 2000 at 04:02:13PM -0800, Gordon Fritsch wrote:
> OK. So what you are saying is that Twofish is 16 bytes and SHA-1 uses 20
> bytes.
no, i say that twofish needs 32 bytes for keys but the
algorithm used for generating the session keys uses
SHA1 internally, so the entropy of the session key
is not more than 20 bytes.
> But I thought SHA1 is a hashing algorithm used by the MAC protocol
> for data integrity, whereas Twofish is a cipher used for encryption. Do they
> not have different uses?
yes. SHA1 is used for data integrity. but the SHA1 algortihm
is used during session setup, too.
-m
