Re: [TLS] Suite B compliance of TLS 1.2

Brian Minard <bminard@certicom.com> Wed, 26 July 2006 19:18 UTC

Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1G5otp-0005t6-Eq; Wed, 26 Jul 2006 15:18:29 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1G5oto-0005t1-4t for tls@ietf.org; Wed, 26 Jul 2006 15:18:28 -0400
Received: from nat194.certicom.com ([66.48.18.194] helo=mail.ca.certicom.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1G5otm-0006mL-Sh for tls@ietf.org; Wed, 26 Jul 2006 15:18:28 -0400
Received: from spamfilter.certicom.com (localhost.localdomain [127.0.0.1]) by mail.ca.certicom.com (Postfix) with ESMTP id 9C200100233D5 for <tls@ietf.org>; Wed, 26 Jul 2006 15:18:23 -0400 (EDT)
Received: from mail.ca.certicom.com ([127.0.0.1]) by spamfilter.certicom.com (storm [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 11981-23 for <tls@ietf.org>; Wed, 26 Jul 2006 15:18:21 -0400 (EDT)
Received: from certicom1.certicom.com (domino1.certicom.com [10.0.1.24]) by mail.ca.certicom.com (Postfix) with ESMTP id F1EF3100233C9 for <tls@ietf.org>; Wed, 26 Jul 2006 15:18:20 -0400 (EDT)
Received: from ce00182.certicom.com ([10.0.2.59]) by certicom1.certicom.com (Lotus Domino Release 6.5.4) with ESMTP id 2006072615173513-3077 ; Wed, 26 Jul 2006 15:17:35 -0400
Received: from ce00182.certicom.com (localhost.certicom.com [127.0.0.1]) by ce00182.certicom.com (8.13.3/8.13.3) with ESMTP id k6QJIJ5Q015911 for <tls@ietf.org>; Wed, 26 Jul 2006 15:18:19 -0400 (EDT) (envelope-from bminard@ce00182.certicom.com)
Received: (from bminard@localhost) by ce00182.certicom.com (8.13.3/8.13.3/Submit) id k6QJIJ2A015910 for tls@ietf.org; Wed, 26 Jul 2006 15:18:19 -0400 (EDT) (envelope-from bminard)
Date: Wed, 26 Jul 2006 15:18:19 -0400
From: Brian Minard <bminard@certicom.com>
To: tls@ietf.org
Subject: Re: [TLS] Suite B compliance of TLS 1.2
Message-ID: <20060726191819.GF14789@certicom.com>
References: <44C6B8C1.3040500@redhat.com> <86fygpyoir.fsf@raman.networkresonance.com> <20060726184648.GE14789@certicom.com> <861ws8w697.fsf@raman.networkresonance.com>
MIME-Version: 1.0
In-Reply-To: <861ws8w697.fsf@raman.networkresonance.com>
User-Agent: mutt-ng/devel-r804 (FreeBSD)
X-MIMETrack: Itemize by SMTP Server on Certicom1/Certicom(Release 6.5.4|March 27, 2005) at 07/26/2006 03:17:35 PM, Serialize by Router on Certicom1/Certicom(Release 6.5.4|March 27, 2005) at 07/26/2006 03:17:36 PM, Serialize complete at 07/26/2006 03:17:36 PM
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 7d33c50f3756db14428398e2bdedd581
Cc:
X-BeenThere: tls@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/tls>
List-Post: <mailto:tls@lists.ietf.org>
List-Help: <mailto:tls-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
Errors-To: tls-bounces@lists.ietf.org

On Wed, Jul 26, 2006 at 11:49:56AM -0700, Eric Rescorla wrote:

> Brian Minard <bminard@certicom.com>; writes:
>
> > I don't entirely understand these statements. Is there a
> > reason why new cipher suites supporting SHA-256, -384, or
> > -512, couldn't be defined using the existing HMAC?
> >
> > Why doesn't this solve the message integrity issue?
>
> I was wondering the same thing... I.e., why Wan-Teh called the
> issue "controversial". Anyway, I was expecting that there would
> eventually be HMAC-XXX cipher suites.

Ok. It was my understanding that new cipher suites
supporting HMAC-XXX was within the scope of your
proposal in Montreal: How to negotiate a new
PRF--http://www3.ietf.org/proceedings/06jul/slides/tls-1.pdf,
page 7.

Was this proposal was accepted?

_______________________________________________
TLS mailing list
TLS@lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls