[Hipsec] FWD: [Cfrg] HKDF paper

Robert Moskowitz <rgm@htt-consult.com> Tue, 11 May 2010 16:57 UTC

Return-Path: <rgm@htt-consult.com>
X-Original-To: hipsec@core3.amsl.com
Delivered-To: hipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id DCF053A68AB for <hipsec@core3.amsl.com>; Tue, 11 May 2010 09:57:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.054
X-Spam-Level:
X-Spam-Status: No, score=-1.054 tagged_above=-999 required=5 tests=[AWL=-0.315, BAYES_20=-0.74, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3Qi+btScsGJ7 for <hipsec@core3.amsl.com>; Tue, 11 May 2010 09:57:07 -0700 (PDT)
Received: from klovia.htt-consult.com (klovia.htt-consult.com [208.83.67.149]) by core3.amsl.com (Postfix) with ESMTP id 938613A68DE for <hipsec@ietf.org>; Tue, 11 May 2010 09:57:05 -0700 (PDT)
Received: from localhost (unknown [127.0.0.1]) by klovia.htt-consult.com (Postfix) with ESMTP id 1727F68B79 for <hipsec@ietf.org>; Tue, 11 May 2010 16:50:27 +0000 (UTC)
Received: from klovia.htt-consult.com ([127.0.0.1]) by localhost (klovia.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7gve5iUX1myR for <hipsec@ietf.org>; Tue, 11 May 2010 12:50:17 -0400 (EDT)
Received: from nc2400.htt-consult.com (h155.home.htt [208.83.67.155]) (Authenticated sender: rgm@htt-consult.com) by klovia.htt-consult.com (Postfix) with ESMTPSA id 99CAE68B77 for <hipsec@ietf.org>; Tue, 11 May 2010 12:50:17 -0400 (EDT)
Message-ID: <4BE98C4A.1080805@htt-consult.com>
Date: Tue, 11 May 2010 12:56:42 -0400
From: Robert Moskowitz <rgm@htt-consult.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.9) Gecko/20100330 Fedora/3.0.4-1.fc12 Thunderbird/3.0.4
MIME-Version: 1.0
To: HIP WG <hipsec@ietf.org>
Content-Type: multipart/alternative; boundary="------------060506060908080108010704"
Subject: [Hipsec] FWD: [Cfrg] HKDF paper
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hipsec>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 May 2010 16:57:08 -0000

Frowarded from Hugo:

================================================================

In anticipation of the publication of HKDF as an RFC (which will happen 
very shortly) and of the publication of the HKDF paper in Crypto'2010 I 
finally updated the paper and posted it to the IACR eprint repository:

The new title for the paper is "Cryptographic Extraction and Key 
Derivation: The HKDF Scheme", and its URL is http://eprint.iacr.org/2010/264

The paper is heavier on the technical side than a previous version (that 
I still keep under http://webee.technion.ac.il/~hugo/kdf/ 
<http://webee.technion.ac.il/%7Ehugo/kdf/> for those less technically 
inclined).
In particular, it answers requests for quantitative statements of 
security (answering, among others, good questions by David McGrew).

There is an attempt in the paper to reflect many of the many-many 
discussions on this list regarding KDF security. I am sure that there 
will be more questions but the paper is too long already...

Hopefully the combination of the RFC and the extensive rationale in the 
paper will encourage people to use this KDF.

Hugo