Re: [TLS] AES-OCB in TLS [New Version Notification for draft-zauner-tls-aes-ocb-03.txt]

Matt Caswell <frodo@baggins.org> Thu, 06 August 2015 11:42 UTC

Return-Path: <frodo@baggins.org>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 521BA1B2DA9 for <tls@ietfa.amsl.com>; Thu, 6 Aug 2015 04:42:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WwlLiycXmSzX for <tls@ietfa.amsl.com>; Thu, 6 Aug 2015 04:42:51 -0700 (PDT)
Received: from ns3.dns-engine.com (ns3.dns-engine.com [87.106.189.53]) by ietfa.amsl.com (Postfix) with ESMTP id A8EA71B2D97 for <tls@ietf.org>; Thu, 6 Aug 2015 04:42:51 -0700 (PDT)
Received: from [10.102.1.6] (unknown [104.238.169.37]) by ns3.dns-engine.com (Postfix) with ESMTPSA id 791C818021E2 for <tls@ietf.org>; Thu, 6 Aug 2015 12:42:31 +0100 (BST)
Message-ID: <55C34810.6000708@baggins.org>
Date: Thu, 06 Aug 2015 12:42:08 +0100
From: Matt Caswell <frodo@baggins.org>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.8.0
MIME-Version: 1.0
To: tls@ietf.org
References: <556C4ACD.9040002@azet.org> <CABcZeBNsYmto4F-J0mFoxcq-qfL=NJrvDu67fyY9bpBmRp16mQ@mail.gmail.com> <556C51FC.807@azet.org> <20150601125302.GA19269@LK-Perkele-VII> <E0C6092D-EFC0-43F9-8807-5D8CE8FF00B8@vigilsec.com> <87vbf1384m.fsf@latte.josefsson.org> <55C27D51.4060502@azet.org>
In-Reply-To: <55C27D51.4060502@azet.org>
Content-Type: text/plain; charset=windows-1252
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/rznvPArsBJA_woiCMZIYONDev30>
Subject: Re: [TLS] AES-OCB in TLS [New Version Notification for draft-zauner-tls-aes-ocb-03.txt]
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Aug 2015 11:42:53 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



On 05/08/15 22:17, Aaron Zauner wrote:
> I'd be happy to receive feedback on the document and am looking
> forward for people to try out AES-OCB in TLS (an upcoming OpenSSL
> version will ship with default-support I am told).

We already have AES-OCB in libcrypto in OpenSSL master (forthcoming
version 1.1.0). However we don't yet have any OCB TLS ciphersuite
support and I'm not aware of anyone currently working on it. That's
not to say it couldn't be included if someone were to provide a patch.

Matt

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAEBAgAGBQJVw0gQAAoJENnE0m0OYESRDjIH/1BrzOANeT6lTC+rklcY4UFN
2DOeohxojCeYkB7e9XzvnFUqbpVrd8O+5SLMaCHzAz5510XdbunTegjjb5DZNkkL
BI52Y3edP0ftTEa2o9tKBJ7ngkg+3cizGR8iVh3+m5Px6chluase8e8Zp6g9Agys
nNvhRxAaycyPXA7z3GrzHzUSSNvA2v2Y9vN69qt+NUyicBxnMYZ7bztW3GEvA+l+
do/Oy0Uv0f3SLxierbnZ18QUaCr4+feWdeq7/B0TvXg5B7QV1Z0XPbVEPGSEv//K
NnJrputtgGB2jfBzM75zI/z6AElyjM4nV1RWTx01qMfUh45xXX9mqrTRld044tk=
=1V//
-----END PGP SIGNATURE-----