"... would reduce ... the performance requirements, ... by truncating the output."
Say wha...?
Umm, back in the old days, web browsers developed in the US received export permission by taking 128-bit SSL and using only the 40 least significant bits, weakening the crypto considerably.
How is this any different?