Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hmac-sha2-06

Jeffrey Altman <jaltman@secure-endpoints.com> Fri, 27 November 2015 15:49 UTC

Return-Path: <prvs=17731c4c21=jaltman@secure-endpoints.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C78DD1B32C2 for <kitten@ietfa.amsl.com>; Fri, 27 Nov 2015 07:49:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.109
X-Spam-Level:
X-Spam-Status: No, score=0.109 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, DKIM_SIGNED=0.1, T_DKIM_INVALID=0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SdzbRA9afHFI for <kitten@ietfa.amsl.com>; Fri, 27 Nov 2015 07:49:32 -0800 (PST)
Received: from sequoia-grove.secure-endpoints.com (sequoia-grove.ad.secure-endpoints.com [208.125.0.235]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4E4171B329F for <kitten@ietf.org>; Fri, 27 Nov 2015 07:49:32 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=secure-endpoints.com; s=MDaemon; t=1448639350; x=1449244150; i=jaltman@secure-endpoints.com; q=dns/txt; h=VBR-Info:Subject:To: References:Cc:From:Openpgp:Organization:Message-ID:Date: User-Agent:MIME-Version:In-Reply-To:Content-Type; bh=IXIxhS1jkn5 /1Jgquf/Z1jBgJ7I/BaSUzkR/bFyRdqg=; b=eDDvFCgNmS3xviRGojH047YJGeH kQ/94z3yjC1F/jw4yYFieFH/5yGOngnwnrM6MOvo2f/eebMbf+XTfw1Cc77u7R3p 1xRvCtrjHw0sUM29ngN+BIKAFQV6deodJKiXDxUwx+5WGMge9UpTisuPDXkT6J0E 1LWnnvc7pQeVPOfQ=
X-MDAV-Result: clean
X-MDAV-Processed: sequoia-grove.secure-endpoints.com, Fri, 27 Nov 2015 10:49:10 -0500
X-Spam-Processed: sequoia-grove.secure-endpoints.com, Fri, 27 Nov 2015 10:49:09 -0500
Received: from [x.x.x.x] by secure-endpoints.com (Cipher TLSv1:AES-SHA:256) (MDaemon PRO v15.5.2) with ESMTPSA id md50000992176.msg for <kitten@ietf.org>; Fri, 27 Nov 2015 10:49:09 -0500
VBR-Info: md=secure-endpoints.com; mc=all; mv=vbr.emailcertification.org;
X-MDArrival-Date: Fri, 27 Nov 2015 10:49:09 -0500
X-Authenticated-Sender: jaltman@secure-endpoints.com
X-Return-Path: prvs=17731c4c21=jaltman@secure-endpoints.com
X-Envelope-From: jaltman@secure-endpoints.com
X-MDaemon-Deliver-To: kitten@ietf.org
To: Michael Peck <mpeck1@gmail.com>, Michael Jenkins <m.jenkins.364706@gmail.com>
References: <alpine.GSO.1.10.1503301227280.22210@multics.mit.edu> <alpine.GSO.1.10.1504171407190.22210@multics.mit.edu>
From: Jeffrey Altman <jaltman@secure-endpoints.com>
Openpgp: id=FA444AF197F449B24CF3E699F77A735592B69A04; url=http://pgp.mit.edu
X-Enigmail-Draft-Status: N1110
Organization: Secure Endpoints Inc.
Message-ID: <56587B6E.3010303@secure-endpoints.com>
Date: Fri, 27 Nov 2015 10:49:02 -0500
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0
MIME-Version: 1.0
In-Reply-To: <alpine.GSO.1.10.1504171407190.22210@multics.mit.edu>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms000201070109060806050409"
Archived-At: <http://mailarchive.ietf.org/arch/msg/kitten/USolqlhXqpvhrOeaRDx3JSOA99E>
Cc: kitten@ietf.org
Subject: Re: [kitten] WGLC on draft-ietf-kitten-aes-cts-hmac-sha2-06
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Nov 2015 15:49:34 -0000

On 4/17/2015 5:23 PM, Benjamin Kaduk wrote:
> 
> That seems to leave us with the following action items:
> 
> For the document editor:
> * remove truncation from the PRF output and use the natural hash output
> length
> * remove the use of random-to-key() and discussion of constant values from
> section 3
> * add an output length argument to KDF-HMAC-SHA2() and adjust text
> accordingly
> * update test vectors to include base keys and key usage values for all
> test cases
> * reword the text discussing aes256 with 192-bit keys

Michael and Michael,

How is draft-ietf-kitten-aes-cts-hmac-sha2-07 coming along?

As promised, Luke Howard is implementing aes-cts-hmac-sha2 for Heimdal.
 Luke currently has -06 implemented and I would prefer to see a verified
implementation of -07 with the above changes.

Thank you.

Jeffrey Altman