Re: [TLS] draft-urien-tls-keygen-00.txt

To: Pascal Urien <Pascal.Urien at enst.fr>
Subject: Re: [TLS] draft-urien-tls-keygen-00.txt
From: Simon Josefsson <simon at josefsson.org>
Date: Mon, 23 Jun 2008 14:20:41 +0200
Cc: tls at ietf.org
Delivered-to: ietfarch-tls-web-archive at core3.amsl.com
Delivered-to: tls at core3.amsl.com
In-reply-to: <20080623082005.22D48B839F@smtp2.enst.fr> (Pascal Urien's message of "Mon, 23 Jun 2008 10:20:03 +0200")
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
Openpgp: id=B565716F; url=http://josefsson.org/key.txt
References: <20080622180956.ED82BB83AF@smtp2.enst.fr> <485E98EF.3020204@pobox.com> <20080623082005.22D48B839F@smtp2.enst.fr>
Sender: tls-bounces at ietf.org
User-agent: Gnus/5.110011 (No Gnus v0.11) Emacs/22.2 (gnu/linux)

It is a good idea to use different labels for different key usage.
Further, I would consider interactions between your document and the
following WG document:

http://www.ietf.org/internet-drafts/draft-ietf-tls-extractor-01.txt

You could refer to this for key label discussions.

/Simon

Pascal Urien <Pascal.Urien at enst.fr> writes:

> Hi Mike,
>
>   I agree on that point.
>
>    Maybe the label used with KDF could be different according
>   to different uses
>
> Pascal
>
> At 20:24 22/06/2008, Mike wrote:
>>It might be better to use a label other than "key expansion" in the KDF
>>since that is already used in TLS.
>>
>>Mike
>>
>>
>>Pascal Urien wrote:
>>>Dear all,
>>>The draft http://www.ietf.org/internet-drafts/draft-urien-tls-keygen-00.txt
>>>  proposes a  keying infrastructure based on the TLS protocol.
>>>  It suggests defining an additional Key Distribution Function (KDF)
>>>  in order to deliver a set of cryptographic keys.
>>>   In a peer to peer mode keys are directly produced as inputs of
>>> the KDF functions.
>>>   For centralized architectures they are delivered through containers,
>>>   secured with keys derived from the KDF function.
>>>   I will attend to the next IETF meeting in Dublin, and i hope to present
>>>   more precisely the scope of this proposal
>>>Best Regards
>>>Pascal
>>_______________________________________________
>>TLS mailing list
>>TLS at ietf.org
>>https://www.ietf.org/mailman/listinfo/tls
_______________________________________________
TLS mailing list
TLS at ietf.org
https://www.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] draft-urien-tls-keygen-00.txt
  - From: Pascal Urien

References:
- [TLS] draft-urien-tls-keygen-00.txt
  - From: Pascal Urien
- Re: [TLS] draft-urien-tls-keygen-00.txt
  - From: Mike
- Re: [TLS] draft-urien-tls-keygen-00.txt
  - From: Pascal Urien

Prev by Date: Re: [TLS] draft-urien-tls-keygen-00.txt
Next by Date: Re: [TLS] draft-urien-tls-keygen-00.txt
Previous by thread: Re: [TLS] draft-urien-tls-keygen-00.txt
Next by thread: Re: [TLS] draft-urien-tls-keygen-00.txt
Index(es):
- Date
- Thread

Re: [TLS] draft-urien-tls-keygen-00.txt

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.