Technical Summary
This draft specifies a 224-bit cryptographic hash function. 224 bits is
the obvious choice to match triple-DES in strength against brute-force
attacks. At least two independent implementations exist and agree on the
test vectors in this document.
Working Group Summary
Since NIST has already specified SHA-224, this was the only reasonable
choice.
Protocol Quality
Steve Bellovin has reviewed this document for the IESG.
RFC Editor Note
Please make two changes.
1. Please correct typos in the Abstract.
OLD:
... A SHA-224 is based on SHA-256, but it uses an different ...
NEW:
... SHA-224 is based on SHA-256, but it uses a different ...
2. The Introduction has two paragraphs. Please add an additional
paragraph at the end of the Introduction.
NEW:
This document makes the SHA-224 one-way hash function specification
available to the Internet community, and it publishes the object
identifiers for use in ASN.1-based protocols.