Re: [TLS] draft on new TLS key exchange

"Dan Harkins" <dharkins@lounge.org> Fri, 07 October 2011 06:55 UTC

Message-ID: <f7ac663b82cf3fd06d9bba7f27e85c33.squirrel@www.trepanning.net>
In-Reply-To: <E1RC4DU-0007Nc-OW@login01.fos.auckland.ac.nz>
References: <E1RC4DU-0007Nc-OW@login01.fos.auckland.ac.nz>
Date: Thu, 06 Oct 2011 23:58:35 -0700
From: Dan Harkins <dharkins@lounge.org>
To: Peter Gutmann <pgut001@cs.auckland.ac.nz>
User-Agent: SquirrelMail/1.4.14 [SVN]
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
Importance: Normal
Cc: tls@ietf.org, dhalasz@intwineenergy.com
Subject: Re: [TLS] draft on new TLS key exchange
Precedence: list

On Thu, October 6, 2011 11:47 pm, Peter Gutmann wrote:
> "Dan Harkins" <dharkins@lounge.org> writes:
>
>>But EKE cannot be used with elliptic curves
>
> Speaking of PAKE for ECC, from reading a writeup of PACE (for passport
> EAC) a
> while back, the claimed reason for introducing PACE was that a lot of
> standard
> DLP PAKE mechanisms aren't secure when used with ECDLPs.  OTOH this RFC
> proposes a complex protocol for ECDLP use with no explanation of how it's
> derived, what its security properties are, or why it's secure.  What's the
> security argument for it?

  I'm sorry, but I don't understand. Are you asking questions of a different
PAKE scheme (PACE)? Which RFC are you talking about? Do you think there is
something missing from the security considerations of our draft? Is there
some statement of security, or argument, you'd like to see?

  Dan.

[TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Geoffrey Keating
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Jean-Marc Desperrier
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Marsh Ray
Re: [TLS] draft on new TLS key exchange Yoav Nir
Re: [TLS] draft on new TLS key exchange Marsh Ray
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Marsh Ray
Re: [TLS] draft on new TLS key exchange Martin Rex
[TLS] TLS-EAP. Was: draft on new TLS key exchange Anders Rundgren
Re: [TLS] TLS-EAP. Was: draft on new TLS key exch… Marsh Ray
Re: [TLS] draft on new TLS key exchange Marsh Ray
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Philip Gladstone
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Dan Harkins
Re: [TLS] draft on new TLS key exchange Jean-Marc Desperrier
Re: [TLS] draft on new TLS key exchange Martin Rex
Re: [TLS] draft on new TLS key exchange Rene Struik
Re: [TLS] draft on new TLS key exchange Nico Williams
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Nico Williams
Re: [TLS] draft on new TLS key exchange Peter Gutmann
Re: [TLS] draft on new TLS key exchange Steven Bellovin
Re: [TLS] draft on new TLS key exchange Anders Rundgren
Re: [TLS] draft on new TLS key exchange Steven Bellovin