Martin Rex wrote: > Using the entropy from the GSS-API prf is fine. Completly ignoring > additional randomness that is available through the regular TLS > handshake looks somewhat strange to me. > > I would have expected that one would XOR a GSS-API supplied entropy > for the pre-master secret with a traditional TLS-generated entropy. In other words, you would prefer an anonymous-DH exchange in addition to the GSS-API PRF? Jeffrey Altman
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ TLS mailing list TLS@xxxxxxxxxxxxxx https://www1.ietf.org/mailman/listinfo/tls