authsha1(7M)

NAME

     authsha1 - HMAC-SHA-1 Authentication  Algorithm  Module  for
     IPsec

SYNOPSIS

     strmod/authsha1

DESCRIPTION

     This module implements the HMAC-SHA-1  authentication  algo-
     rithm, using the SHA-1 hash algorithm and the HMAC technique
     set forth in RFC 2104. The authshal module has the following
     properties

          key size
                160 bits

          digest size
                96 bits (truncated from 160).

     authshal is used by both AH and ESP.

ATTRIBUTES

     See attributes(5)  for descriptions of the following  attri-
     butes:

     ____________________________________________________________
   |        ATTRIBUTE TYPE       |        ATTRIBUTE VALUE      |
   | ____________________________|_____________________________|_
   |  Availability               |  SUNWcsr (32-bit)           |
   | ____________________________|_____________________________|_
   |                             |  SUNWcarx (64-bit)          |
   |_____________________________|_____________________________|
   | Interface Stability         | Evolving                    |
   |_____________________________|_____________________________|

SEE ALSO

     ipseckey(1M),    attributes(5),    pf_key(7P),    ipsec(7P),
     ipsecah(7P), ipsecesp(7P)

     NIST, FIPS PUB 180-1: Secure Hash Standard, April 1995.

     Krawczyk, H., Ballare, M., and Canetti, R., RFC 2104,  HMAC:
     Keyed-Hashing   for  Message  Authentication,  The  Internet
     Society, 1997.

     Madsen, C. and Glenn, R., RFC 2404, The Use of HMAC-SHA-1-96
     within ESP and AH, The Internet Society, 1998.