Re: [quicwg/base-drafts] Encrypting Retry token (#3274)
MikkelFJ <notifications@github.com> Mon, 09 December 2019 20:06 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 69CD71200A4 for <quic-issues@ietfa.amsl.com>; Mon, 9 Dec 2019 12:06:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.382
X-Spam-Level:
X-Spam-Status: No, score=-6.382 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_24=1.618, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id L8WNlaUSqKSq for <quic-issues@ietfa.amsl.com>; Mon, 9 Dec 2019 12:06:34 -0800 (PST)
Received: from out-23.smtp.github.com (out-23.smtp.github.com [192.30.252.206]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F2E45120019 for <quic-issues@ietf.org>; Mon, 9 Dec 2019 12:06:33 -0800 (PST)
Date: Mon, 09 Dec 2019 12:06:33 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1575921993; bh=i60BY294Yxyg2hq34ETaQKNr0rHvBFkEPT6N6pPqSjs=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=lgk71Dr7+GB6dBDfxt034sWaCDVEO8AWLrMIcEIqfMP84u5Kc8FQlSTpS+0HXx/cW Hlc2SZ5okYMKwNryaLRJZZc03v9pGA7talEH2qCkOaAdWvV8wjcgLS44o+ZZwMOM5R PVo2IpnS0qBqkmIcBzRVawVf1hicK64FHdnpp3sY=
From: MikkelFJ <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+AFTOJK26F7G6QDQ5GYJCCUV37PN4TEVBNHHB7CUNWA@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/3274/563412734@github.com>
In-Reply-To: <quicwg/base-drafts/issues/3274@github.com>
References: <quicwg/base-drafts/issues/3274@github.com>
Subject: Re: [quicwg/base-drafts] Encrypting Retry token (#3274)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5deea949b715_5a2f3fd5c44cd964110438"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: mikkelfj
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/pX3tlmjxRWDw-IaRRK3yU27wros>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Dec 2019 20:06:36 -0000
If it's not clear, GHASH is the underlying hash algorithm for GCM and addition to the AES encryption track, but it somehow needs a key and a way to specify content and somewhere to place the result. GCM provides the framework for that hence GMAC is additional authenticated data without encrypted plaintext. Since there is no encryption in GMAC, GMAC is essentially GHASH, but with a clear way to specify the input/output parameters. There is probably an extra AES block encryption in GMAC to derive the GHASH key, and possibly an extra AES block encryption on the output, compared to raw GHASH, but I do not remember exactly. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/issues/3274#issuecomment-563412734
- [quicwg/base-drafts] Encrypting Retry token (#327… Martin Thomson
- Re: [quicwg/base-drafts] Encrypting Retry token (… Martin Thomson
- Re: [quicwg/base-drafts] Encrypting Retry token (… Kazuho Oku
- Re: [quicwg/base-drafts] Encrypting Retry token (… Kazuho Oku
- Re: [quicwg/base-drafts] Encrypting Retry token (… Martin Thomson
- Re: [quicwg/base-drafts] Encrypting Retry token (… Martin Thomson
- Re: [quicwg/base-drafts] Encrypting Retry token (… Martin Thomson
- Re: [quicwg/base-drafts] Encrypting Retry token (… David Schinazi
- Re: [quicwg/base-drafts] Encrypting Retry token (… Martin Thomson
- Re: [quicwg/base-drafts] Encrypting Retry token (… ekr
- Re: [quicwg/base-drafts] Encrypting Retry token (… Dmitri Tikhonov
- Re: [quicwg/base-drafts] Encrypting Retry token (… ekr
- Re: [quicwg/base-drafts] Encrypting Retry token (… Nick Banks
- Re: [quicwg/base-drafts] Encrypting Retry token (… Nick Banks
- Re: [quicwg/base-drafts] Encrypting Retry token (… Jana Iyengar
- Re: [quicwg/base-drafts] Encrypting Retry token (… Christian Huitema
- Re: [quicwg/base-drafts] Encrypting Retry token (… David Schinazi
- Re: [quicwg/base-drafts] Encrypting Retry token (… Praveen Balasubramanian
- Re: [quicwg/base-drafts] Encrypting Retry token (… MikkelFJ
- Re: [quicwg/base-drafts] Encrypting Retry token (… ianswett
- Re: [quicwg/base-drafts] Encrypting Retry token (… MikkelFJ
- Re: [quicwg/base-drafts] Encrypting Retry token (… Martin Thomson
- Re: [quicwg/base-drafts] Encrypting Retry token (… MikkelFJ
- Re: [quicwg/base-drafts] Encrypting Retry token (… MikkelFJ
- Re: [quicwg/base-drafts] Encrypting Retry token (… Martin Thomson
- Re: [quicwg/base-drafts] Encrypting Retry token (… Kazuho Oku
- Re: [quicwg/base-drafts] Encrypting Retry token (… martinduke
- Re: [quicwg/base-drafts] Encrypting Retry token (… Jana Iyengar
- Re: [quicwg/base-drafts] Encrypting Retry token (… ekr
- Re: [quicwg/base-drafts] Encrypting Retry token (… Jana Iyengar