Re: Working Group Last Call: draft-ietf-kitten-krb5-gssapi-prf-02.txt and draft-ietf-kitten-gssapi-prf-02.txt
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Working Group Last Call: draft-ietf-kitten-krb5-gssapi-prf-02.txt and draft-ietf-kitten-gssapi-prf-02.txt
On Thu, Apr 14, 2005 at 05:37:19PM -0400, Sam Hartman wrote:
> >>>>> "Nicolas" == Nicolas Williams <Nicolas.Williams at sun.com> writes:
>
> Nicolas> On Thu, Apr 14, 2005 at 04:56:25PM -0400, Sam Hartman
> Nicolas> wrote:
> >> >>>>> "Jeffrey" == Jeffrey Altman <jaltman at columbia.edu>
> >> writes:
> >>
> Jeffrey> (2) Appropriate text specifying how the key usage for the
> Jeffrey> Krb5 PRF function will be determined must be added.
> >> RFc 3961 does not have keyusage for PRF.
>
> Nicolas> Note that the key usage in question is for the krb5
> Nicolas> _mechanism_'s GSS PRF, not the kcrypto PRF. Given that,
> Nicolas> what impact does the lack of a key usage for the kcrypto
> Nicolas> prf have, in your opinion, on this I-D?
>
> The kcrypto prf takes a protocol key not a derived key. You don't
> stick in a key usage number anywhere. Your draft at least claims to
> use the kcrypto prf in a prf+ construction.
Sure, but my I-D can still mandate the use of a derived key, with some
key usage, to be used as input to the kcrypto prf. Correct?
Nico
--
_______________________________________________
Kitten mailing list
Kitten at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/kitten
Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.
