[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix

To: "Omirjan Batyrbaev" <batyr@xxxxxxxxxxxx>
Subject: Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
From: Eric Rescorla <ekr@xxxxxxxxxxxxxxxxxxxx>
Date: Mon, 20 Nov 2006 13:42:40 -0800
Cc: TLS@xxxxxxxxxxxxxx
In-reply-to: <> (Omirjan Batyrbaev's message of "Mon, 20 Nov 2006 16:29:52 -0500")
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <> <86lkm6rdau.fsf@xxxxxxxxxxxxxx> <> <86d57irvjl.fsf@xxxxxxxxxxxxxxxxxxxxxxxxxx> <>
Reply-to: EKR <ekr@xxxxxxxxxxxxxxxxxxxx>
User-agent: Gnus/5.1007 (Gnus v5.10.7) XEmacs/21.4.19 (berkeley-unix)

"Omirjan Batyrbaev" <batyr@xxxxxxxxxxxx> writes:

> Hi Eric,
> I've seen the TLS reference to the "Request for Comments: 2104" so this is
> (probably) the HMAC used in TLS. Quoting to be on the same page:
> "To compute HMAC over the data `text' we perform
>                     H(K XOR opad, H(K XOR ipad, text))"
>
> However, this RFC was produced in 1997 but SSL was from 1995 (or earlier?).
> Do you know which HMAC they used in say SSL v3 and v2 (which is still an
> option in my browser, etc.)?

SSLv3 used a variant of the original HMAC (pre-2104). IIRC, SSLv2
didn't use HMAC and *did* have an extension attack, but that's
hardly our problem at this point.

-Ekr



_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
  - From: Omirjan Batyrbaev
- Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
  - From: Omirjan Batyrbaev

References:
- [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
  - From: Omirjan Batyrbaev
- Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
  - From: EKR
- Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
  - From: Omirjan Batyrbaev
- Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
  - From: Eric Rescorla
- Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
  - From: Omirjan Batyrbaev

Prev by Date: Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
Next by Date: Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
Previous by thread: Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
Next by thread: Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
Index(es):
- Date
- Thread