[TLS] Truncated HMAC recommendation
Mike <mike-list@pobox.com> Mon, 27 November 2006 18:32 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1GolHk-0005GN-9d; Mon, 27 Nov 2006 13:32:56 -0500
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1GolHj-0005G9-6d for tls@ietf.org; Mon, 27 Nov 2006 13:32:55 -0500
Received: from rune.pobox.com ([208.210.124.79]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1GolHi-0006jW-05 for tls@ietf.org; Mon, 27 Nov 2006 13:32:55 -0500
Received: from rune (localhost [127.0.0.1]) by rune.pobox.com (Postfix) with ESMTP id 6A9669658E for <tls@ietf.org>; Mon, 27 Nov 2006 13:33:15 -0500 (EST)
Received: from [192.168.1.8] (wsip-24-234-114-35.lv.lv.cox.net [24.234.114.35]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by rune.sasl.smtp.pobox.com (Postfix) with ESMTP id 394B8964F1 for <tls@ietf.org>; Mon, 27 Nov 2006 13:33:15 -0500 (EST)
Message-ID: <456B2FC6.10902@pobox.com>
Date: Mon, 27 Nov 2006 10:34:46 -0800
From: Mike <mike-list@pobox.com>
User-Agent: Thunderbird 1.5.0.8 (Windows/20061025)
MIME-Version: 1.0
To: tls@ietf.org
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 08e48e05374109708c00c6208b534009
Cc:
Subject: [TLS] Truncated HMAC recommendation
X-BeenThere: tls@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/tls>
List-Post: <mailto:tls@lists.ietf.org>
List-Help: <mailto:tls-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
Errors-To: tls-bounces@lists.ietf.org
I think it would be good to add a recommendation that when the truncated HMAC extension is used, the amount of padding added for block ciphers should be the minimum required. It seems silly to save 10 bytes of MAC data and then add 250+ extra padding bytes. Mike _______________________________________________ TLS mailing list TLS@lists.ietf.org https://www1.ietf.org/mailman/listinfo/tls
- [TLS] Truncated HMAC recommendation Mike
- Re: [TLS] Truncated HMAC recommendation Eric Rescorla
- RE: [TLS] Truncated HMAC recommendation Blumenthal, Uri
- Re: [TLS] Truncated HMAC recommendation Mike
- RE: [TLS] Truncated HMAC recommendation Blumenthal, Uri
- RE: [TLS] Truncated HMAC recommendation Whyte, William
- RE: [TLS] Truncated HMAC recommendation Blumenthal, Uri
- RE: [TLS] Truncated HMAC recommendation Whyte, William