[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [TLS] Re: WGLC: draft-ietf-tls-srp-13
http://csrc.nist.gov/CryptoToolkit/kms/SP800-56A_May2006.pdf
see appendix B. Its rationale is relevant to SSL's finished processes,
and the TLS Evidence work item (concerning the confirmed roles being
affirmed, pertinent to the "agreement").
I suspect TLS really ought to define more roles for use in
the final KDF, including "T-bridge" and "https proxy".
----- Original Message -----
From: <home_pw@xxxxxxx>
To: <tls@xxxxxxxx>
Sent: Thursday, December 28, 2006 11:56 PM
Subject: Re: [TLS] Re: WGLC: draft-ietf-tls-srp-13
We were discussing ephemeral DH (etc), vs temporary RSA.
As always, NIST make things crystal clear:
http://csrc.nist.gov/CryptoToolkit/kms/SP800-56A_May2006.pdf
Its best to read this in concert with IETF's CMS for KEA/skipjack, so
one can see its application to more than undergrad DH examples. Then
one can apply it to SSLv3 (and extensions).
_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls
_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls