Archive

Re: [TLS] AES-OCB in TLS [New Version Notification for draft-zauner-tls-aes-ocb-03.txt]

Jeffrey Walton <noloader@gmail.com> Mon, 01 June 2015 17:22 UTC

MIME-Version: 1.0
In-Reply-To: <556C9157.4030409@gmail.com>
References: <556C4ACD.9040002@azet.org> <CABcZeBNsYmto4F-J0mFoxcq-qfL=NJrvDu67fyY9bpBmRp16mQ@mail.gmail.com> <556C51FC.807@azet.org> <5878037.eTrqDl0Ll5@pintsize.usersys.redhat.com> <556C5881.4080902@azet.org> <CAH8yC8nCCNF9B72yNgM-hOkCYJrc2ZU0PmpeBrnbknKO92OZtA@mail.gmail.com> <556C8320.2010705@azet.org> <CAH8yC8k9Ytf+-=VM0AF36nr3PF_fjTvEpgNRNqAF7xu4zymzRg@mail.gmail.com> <556C9157.4030409@gmail.com>
Date: Mon, 1 Jun 2015 13:22:03 -0400
Message-ID: <CAH8yC8kwgCMsmoAaP0m7s=nd_7=oRipYnPpQqcE-y2GqnDn3UQ@mail.gmail.com>
From: Jeffrey Walton <noloader@gmail.com>
To: Yaron Sheffer <yaronf.ietf@gmail.com>
Content-Type: text/plain; charset=UTF-8
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/nTQY9C-iL5G4BFEL3IaxkvVBXAk>
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] AES-OCB in TLS [New Version Notification for draft-zauner-tls-aes-ocb-03.txt]
Precedence: list
Reply-To: noloader@gmail.com

On Mon, Jun 1, 2015 at 1:07 PM, Yaron Sheffer <yaronf.ietf@gmail.com> wrote:
> On 06/01/2015 07:30 PM, Jeffrey Walton wrote:
>>
>>
>> If PSK is going to be yanked, then there should probably be an
>> non-public-key PAKE alternative.
>>
> PAKE means password-authenticated key exchange, and TLS-PSK is not suitable
> for use with (short, memorable) passwords. See
> https://tools.ietf.org/html/rfc4279#section-7.2
>
> TLS-SRP is the right tool for that. It is public key based but does not
> require the whole PKI code bloat, so may be a good fit for
> resource-constrained devices.
>
Indeed, thanks. Sorry about that.

Jeff

[TLS] AES-OCB in TLS [New Version Notification fo… Aaron Zauner
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Eric Rescorla
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Aaron Zauner
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Eric Rescorla
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Ilari Liusvaara
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Hubert Kario
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Aaron Zauner
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Jeffrey Walton
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Aaron Zauner
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Peter Bowen
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Aaron Zauner
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Russ Housley
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Jeffrey Walton
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Yaron Sheffer
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Jeffrey Walton
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Daniel Kahn Gillmor
[TLS] EDDSA/Curve25519 identifiers: Was Re: AES-O… Michael StJohns
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Michael Hamburg
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Daniel Kahn Gillmor
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Aaron Zauner
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Rob Stradling
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Michael Hamburg
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Gunnar Wolf
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Peter Gutmann
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Simon Josefsson
Re: [TLS] EDDSA/Curve25519 identifiers: Was Re: A… Simon Josefsson
Re: [TLS] EDDSA/Curve25519 identifiers: Was Re: A… Salz, Rich
Re: [TLS] EDDSA/Curve25519 identifiers: Was Re: A… Peter Bowen
Re: [TLS] EDDSA/Curve25519 identifiers: Was Re: A… Michael StJohns
Re: [TLS] EDDSA/Curve25519 identifiers: Was Re: A… Nico Williams
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Aaron Zauner
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Blumenthal, Uri - 0553 - MITLL
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Aaron Zauner
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Aaron Zauner
Re: [TLS] AES-OCB in TLS [New Version Notificatio… Matt Caswell