Re: [TLS] AES-OCB in TLS [New Version Notification for draft-zauner-tls-aes-ocb-03.txt]

Aaron Zauner <> Wed, 05 August 2015 21:17 UTC

Return-Path: <>
Received: from localhost ( []) by (Postfix) with ESMTP id D3AFD1AC3B2 for <>; Wed, 5 Aug 2015 14:17:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id zVikphwdGW04 for <>; Wed, 5 Aug 2015 14:17:10 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id E82241AC3A6 for <>; Wed, 5 Aug 2015 14:17:09 -0700 (PDT)
Received: by wibxm9 with SMTP id xm9so224713998wib.0 for <>; Wed, 05 Aug 2015 14:17:08 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20130820; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :subject:references:in-reply-to:content-type; bh=3wD3K243TKrIIX5+i/0GeFUS20zr6hC91YJxahUEdCc=; b=eUxU94wQcl4ZsGQIugk7T/3FR04degHFIAclu4iEMJlvBmyb3xaTiGo9Lzwzb4uzlj B4rFCPxyWprtQDDA6Ffg25fQ/GeWJl6ZZaUhTz77dleNkya4CevpH191lXj7gBXsunys 3BzabPucxbDtARywuuPaFRxUofezk4aIX+NY1Nu1Jl71tWnS2L1lQxhbY9LRsrIA6jH3 sJpRsFdg39zF6teNWKL+S/UsHsaUaU4H0hXmFliVMr28lZk+ohDbslbpuCwfZbQ1Ssb9 pDa9alsxryN2xBhVyXGlelgMcuWza9gsVPtWnpQqj3w6ForHtpw5NZ4qFrE6e29qa4+8 BYig==
X-Gm-Message-State: ALoCoQnuTfly2Q4SWSCLKBVK7Ehp9M5LDxU5wNazbcZuhtfJrltq2OQMBgcvcpUNWgoVSyZTQpM7
X-Received: by with SMTP id cu1mr23993823wjc.59.1438809428669; Wed, 05 Aug 2015 14:17:08 -0700 (PDT)
Received: from [] ( []) by with ESMTPSA id i6sm5946264wje.33.2015. for <> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 05 Aug 2015 14:17:07 -0700 (PDT)
Message-ID: <>
Date: Wed, 05 Aug 2015 23:17:05 +0200
From: Aaron Zauner <>
User-Agent: Postbox 3.0.11 (Macintosh/20140602)
MIME-Version: 1.0
To: TLS Mailing List <>
References: <> <> <> <20150601125302.GA19269@LK-Perkele-VII> <> <>
In-Reply-To: <>
X-Enigmail-Version: 1.2.3
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="------------enigDEC012CF859105BE03FE2118"
Archived-At: <>
Subject: Re: [TLS] AES-OCB in TLS [New Version Notification for draft-zauner-tls-aes-ocb-03.txt]
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 05 Aug 2015 21:17:12 -0000


A short update on the matter of IPR related to AES-OCB in TLS:

It took some time but over the past couple of weeks all IPR exemptions
have been filed by the original patent holders (Rogaway and IBM
[Jutla]). These IPR exemptions can be viewed over here:


The current document is available on the IETF website, I've made a few
minor editorial changes in my git repository [0] but not yet uploaded a
new version of the document as I'm still waiting if people would like to
see more substantial changes to the document.

I'd be happy to receive feedback on the document and am looking forward
for people to try out AES-OCB in TLS (an upcoming OpenSSL version will
ship with default-support I am told).

Thanks for your patience,