Protocol Action: The AES-XCBC-MAC-96 Algorithm and Its Use With IPsec to Proposed Standard
The IESG <iesg-secretary@ietf.org> Thu, 03 April 2003 21:07 UTC
Received: from ran.ietf.org (ran.ietf.org [10.27.6.60]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA13818; Thu, 3 Apr 2003 16:07:27 -0500 (EST)
Received: from majordomo by ran.ietf.org with local (Exim 4.10) id 191C8S-0004Yq-00 for ietf-announce-list@ran.ietf.org; Thu, 03 Apr 2003 16:20:36 -0500
Received: from odin.ietf.org ([10.27.2.28] helo=ietf.org) by ran.ietf.org with esmtp (Exim 4.10) id 191C8H-0004Wx-00 for all-ietf@ran.ietf.org; Thu, 03 Apr 2003 16:20:25 -0500
Received: from CNRI.Reston.VA.US (localhost [127.0.0.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA13664; Thu, 3 Apr 2003 16:03:16 -0500 (EST)
Message-Id: <200304032103.QAA13664@ietf.org>
To: IETF-Announce:;
Cc: RFC Editor <rfc-editor@isi.edu>, Internet Architecture Board <iab@iab.org>, ipsec@lists.tislabs.com
From: The IESG <iesg-secretary@ietf.org>
Subject: Protocol Action: The AES-XCBC-MAC-96 Algorithm and Its Use With IPsec to Proposed Standard
Date: Thu, 03 Apr 2003 16:03:15 -0500
Sender: owner-ietf-announce@ietf.org
Precedence: bulk
The IESG has approved "The AES-XCBC-MAC-96 Algorithm and Its Use With IPsec" <draft-ietf-ipsec-ciph-aes-xcbc-mac-04.txt> as a Proposed Standard. This document is the product of the IPsec Working Group. The IESG contact persons are Steve Bellovin and Russ Housley. Technical Summary This document defines a new hash algorithm for use in IPsec ESP. It is a variant of the traditional use of a cipher in Cipher Block Chaining (CBC) Mode to compute a hash value. However traditional CBC mode hashes are vulnerable to attack if the amount of data to be protected is of variable length. This document defines a variant of this approach, applied to the Advanced Encryption Standard (AES) that is proof against this vulnerability. Working Group Summary There was working group consensus on this document. Protocol Quality These documents were reviewed by Jeff Schiller.