Re: [TLS] draft on new TLS key exchange

Peter Gutmann <pgut001@cs.auckland.ac.nz> Fri, 07 October 2011 22:25 UTC

From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: dharkins@lounge.org, pgut001@cs.auckland.ac.nz
In-Reply-To: <f7ac663b82cf3fd06d9bba7f27e85c33.squirrel@www.trepanning.net>
Message-Id: <E1RCIuZ-0005O5-8H@login01.fos.auckland.ac.nz>
Date: Sat, 08 Oct 2011 11:28:59 +1300
Cc: tls@ietf.org, dhalasz@intwineenergy.com
Subject: Re: [TLS] draft on new TLS key exchange
Precedence: list

"Dan Harkins" <dharkins@lounge.org> writes:

>I'm sorry, but I don't understand. Are you asking questions of a different
>PAKE scheme (PACE)? 

The PACE discussion pointed out problems in doing PAKE for ECDLP, which PACE
was introduced to deal with.  The scheme proposed in your draft is not PACE,
and has no indication of where it came from or why it's secure.

>Which RFC are you talking about? 

Your RFC draft.

>Do you think there is something missing from the security considerations of
>our draft? Is there some statement of security, or argument, you'd like to
>see?

Yes, something like a pointer to a conference/journal paper explaining where
the scheme in the RFC draft came from and why it's secure.

Peter.

[TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Geoffrey Keating
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Jean-Marc Desperrier
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Marsh Ray
Re: [TLS] draft on new TLS key exchange Yoav Nir
Re: [TLS] draft on new TLS key exchange Marsh Ray
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Marsh Ray
Re: [TLS] draft on new TLS key exchange Martin Rex
[TLS] TLS-EAP. Was: draft on new TLS key exchange Anders Rundgren
Re: [TLS] TLS-EAP. Was: draft on new TLS key exch… Marsh Ray
Re: [TLS] draft on new TLS key exchange Marsh Ray
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Philip Gladstone
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Jean-Marc Desperrier
Re: [TLS] draft on new TLS key exchange Martin Rex
Re: [TLS] draft on new TLS key exchange Rene Struik
Re: [TLS] draft on new TLS key exchange Nico Williams
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Nico Williams
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Steven Bellovin
Re: [TLS] draft on new TLS key exchange Anders Rundgren
Re: [TLS] draft on new TLS key exchange Steven Bellovin