Hi David, With the new DH support for the key retention service, support for DH derived keys pops up. The implementation in security/keys/dh.c returns the DH shared secret straight to the user space caller. I implemented a KDF with that exact scenario already in mind: [1]. I am wondering whether the shared secret should be processed by a KDF before returning the data to user space? [1] http://www.chronox.de/kdf.html Ciao Stephan -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html