[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] Truncated HMAC

To: Mike <mike-list@xxxxxxxxx>
Subject: Re: [TLS] Truncated HMAC
From: Casey Marshall <csm@xxxxxxx>
Date: Thu, 16 Nov 2006 12:17:42 -0800
Cc: tls@xxxxxxxxxxxxxx
In-reply-to: <455BB8BC.2060403@xxxxxxxxx>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <455BB8BC.2060403@xxxxxxxxx>

On Nov 15, 2006, at 5:02 PM, Mike wrote:

Hello,

I have a question regarding the truncated HMAC extension.
When this extension is negotiated, the spec says that
CipherSpec.hash_size is 10 bytes.  So does that mean I
should only generate 10 bytes for each MAC secret?


From RFC 4366, section 3.5:

"Note that this extension does not affect the calculation of thepseudo-random function (PRF) as part of handshaking or key derivation."


_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Truncated HMAC
  - From: Mike

References:
- [TLS] Truncated HMAC
  - From: Mike

Prev by Date: Re: [TLS] TLS 1.1 servers available for testing?
Next by Date: Re: [TLS] Truncated HMAC
Previous by thread: [TLS] Truncated HMAC
Next by thread: Re: [TLS] Truncated HMAC
Index(es):
- Date
- Thread