SSL3macMD5, SSL3macSHA1

George Chung (gchung@openhorizon.com)
Mon, 23 Mar 1998 13:44:53 -0800

From: "George Chung" <gchung@openhorizon.com>
To: <java-security@javasoft.com>
Subject: SSL3macMD5, SSL3macSHA1
Date: Mon, 23 Mar 1998 13:44:53 -0800

You may want to consider these MAC algorithms which are very similar to the
Hmac construction. The SSL mac differs from Hmac in that the secret key is
concatentated with a known byte pattern rather than x'ord (per the Hmac
construction).

>From The SSL Protocol Version 3.0 Novemeber 18, 1996...

The MAC is generated as:

hash(MAC_write_secret + pad_2 +
hash(MAC_write_secret + pad_1 + <SSL specific construction>));

where "+" denotes concatentation.

pad_1 The character 0x36 repeated 48 times for MD5 or 40 times for SHA.

pad_2 The character 0x5c repeated 48 times for MD5 or 40 times for SHA.