Re: [TLS] Issue 66: HMAC-256 based ciphersuites

To: "Eric Rescorla" <ekr@xxxxxxxxxxxxxxxxxxxx>

Subject: Re: [TLS] Issue 66: HMAC-256 based ciphersuites

From: "Nikos Mavrogiannopoulos" <nmav@xxxxxxxxxx>

Date: Tue, 1 Jan 2008 13:17:25 +0200

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:references:x-google-sender-auth; bh=Y68hiE/6SfGFAWXMVZmJs7PJ6enX+A1+sLYF1LIL14U=; b=ij87Ft9hNYNG70wxTMrYe4g/Mtavd2XSerOyhRb15zfBIVhsmvOh2DkhUzV05a5EdSpAGyuRl+d1179oClrdT++H8n1IlAtm3HWwKa6hL3dARukNNfJojRrWTkytqoDYq50YTiO7F8VCf14fA1tFGcmMrsNIZtHypD0BbQA0cl8=

Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:references:x-google-sender-auth; b=eKkdUrYYkG18Q9VN25cAwyFMofdj8ihyjeHG90Z7LO19vlxWJPDEgMHi0xRvE67AvVcViSDxcpZo8+uY6Jj/TTT7W8OO56yBYpHIhJb//5OX9ajcF0qTtDVY9/V62HgtJuPaTKOfWv+AWnxN6jy8Zm47XUieXchDFn82mlU3KXQ=

In-reply-to: <20071231224941.3FE235081A@xxxxxxxxxxxxxx>

List-archive: <http://www1.ietf.org/pipermail/tls>

List-help: <mailto:tls-request@lists.ietf.org?subject=help>

List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>

List-post: <mailto:tls@lists.ietf.org>

List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>

List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>

References: <20071231224941.3FE235081A@xxxxxxxxxxxxxx>

On Jan 1, 2008 12:49 AM, Eric Rescorla < ekr@xxxxxxxxxxxxxxxxxxxx> wrote:

Someone, I can't remember who, suggested that we add
HMAC-SHA256-based ciphersuites (i.e., ones that use it as a message
MAC) directly in TLS 1.2. I'm waffling as to whether it's a good
idea.

Arguments for:

- We made it the default for the PRF.
- It's weird to to to all this trouble and not define them.

Arguments against:
- There's nothing known wrong with HMAC-SHA1
- This revision is about flexibility, not actually adding new
digests.

Comments?

-Ekr

_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

_______________________________________________ TLS mailing list TLS@xxxxxxxxxxxxxx https://www1.ietf.org/mailman/listinfo/tls