%% You should probably cite draft-herzog-withmac-keywrap-02 instead of this revision. @techreport{herzog-withmac-keywrap-00, number = {draft-herzog-withmac-keywrap-00}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-herzog-withmac-keywrap/00/}, author = {Jonathan Herzog and Roger Khazan}, title = {{The With-MAC key-wrapping algorithm for Cryptographic Message Syntax}}, pagetotal = 17, year = 2011, month = apr, day = 14, abstract = {This document describes a new key-wrapping algorithm to be used in the EnvelopedData, AuthenticatedData and AuthEnvelopedData structures of the Cryptographic Message Syntax. Because these structures do not provide data-origin authentication, a recipient cannot cryptographically verify that the plaintext received was the plaintext encapsulated by the message's original sender. The With- MAC key-wrapping algorithm allows an EncryptedKey value to hold both a wrapped symmetric key and a MAC value on the data to be authenticated. When used in EnvelopedData, AuthenticatedData and AuthEnvelopedData structures, therefore, these structures can achieve data-origin authentication (in some circumstances) using only symmetric-key algorithms.}, }