[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[TLS] Record layer padding

To: tls@xxxxxxxxxxxxxx
Subject: [TLS] Record layer padding
From: JCA <1.41421@xxxxxxxxx>
Date: Thu, 24 Jan 2008 20:17:03 -0800
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; bh=sqwzKP9anC5LtzVdvyvldc1Ho1e453mp0dCe29MNxKM=; b=MramIl5SiD/1U6Ynasn72bXO5MnvVezAvs9pnzTz+vxK4L/JlBLetBkclb2+ePlMYhUI9/Q1g+kksrPrTNl1FefldEljfUAmAds9uqf8rUgZ11eDA49gS74hvObRfYh6FHFgNmxZ526SpRsryvIp3/PKR6vlkzMSG2e4R6mtjEs=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=stJGMAdKwsUuiTHAdkpsOS0IavADIJt9F0AOFAG/S0Zrecfo1ctTXvhNLOgOHRvwwhVZKaFEHRWXGtWIrCyqqE+0dsjlw3StF0puI8jXvSQDVkIR7ByCXu3/jyxUKhne1HDk1nSg1DXoPLV/2qRLkoqjPl2WOnZQQGgeKOsj33U=
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>

    I am trying to become thoroughly familiar with the TLS
specification, and I have reached a point at which I have a doubt that
the spec does not seem to dispel. Or, if it does, I have been unable
to find where. My apologies in advance for that.

   My questions are to do with record layer padding. The spec
describes how to do it when using a block cipher. What is not clear
from the spec is the following:

   What happens when the length of the record layer data to be
encrypted happens to be a multiple of the block cipher's block size?
Does one have to add a padding block the same size as the cipher's
block size, or is one to set the closing padding length byte to zero,
without adding any explicit padding? I'd be inclined to do the former,
but I do not know if this is what the spec intended.

   Also, what happens to record layers put together before encryption
kicks in? Is one supposed not to use the padding length byte at all?
That's what I would do myself but, again, I am not sure.

   Any feedback will be most welcome.



_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- RE: [TLS] Record layer padding
  - From: Pasi.Eronen

Prev by Date: RE: [TLS] Status of IDEA and single-DES (ticket #64)
Next by Date: RE: [TLS] Record layer padding
Previous by thread: Antony
Next by thread: RE: [TLS] Record layer padding
Index(es):
- Date
- Thread