From rgm-sec@htt-consult.com Tue Jan 19 10:46:29 2010 Return-Path: X-Original-To: cfrg@core3.amsl.com Delivered-To: cfrg@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 42C1B3A68E6 for ; Tue, 19 Jan 2010 10:46:29 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.62 X-Spam-Level: X-Spam-Status: No, score=0.62 tagged_above=-999 required=5 tests=[BAYES_50=0.001, RCVD_IN_SORBS_WEB=0.619] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fIeSSG1D4gCu for ; Tue, 19 Jan 2010 10:46:28 -0800 (PST) Received: from klovia.htt-consult.com (klovia.htt-consult.com [208.83.67.149]) by core3.amsl.com (Postfix) with ESMTP id 8B81F3A68F8 for ; Tue, 19 Jan 2010 10:46:25 -0800 (PST) Received: from localhost (unknown [127.0.0.1]) by klovia.htt-consult.com (Postfix) with ESMTP id ACCEA68A8D for ; Tue, 19 Jan 2010 19:43:36 +0000 (UTC) X-Virus-Scanned: amavisd-new at localhost Received: from klovia.htt-consult.com ([127.0.0.1]) by localhost (klovia.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id t0eRAUfWVXXz for ; Tue, 19 Jan 2010 14:43:28 -0500 (EST) Received: from nc2400.htt-consult.com (unknown [12.192.108.20]) (Authenticated sender: rgm-sec@htt-consult.com) by klovia.htt-consult.com (Postfix) with ESMTPSA id C21B368BD5 for ; Tue, 19 Jan 2010 14:43:27 -0500 (EST) Message-ID: <4B55FDF2.9070408@htt-consult.com> Date: Tue, 19 Jan 2010 10:46:10 -0800 From: Robert Moskowitz User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.5) Gecko/20091209 Fedora/3.0-4.fc12 Thunderbird/3.0 MIME-Version: 1.0 To: cfrg@irtf.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: [Cfrg] Can we please have a new draft of draft-krawczyk-hkdf? X-BeenThere: cfrg@irtf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Crypto Forum Research Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 19 Jan 2010 18:46:29 -0000 I am all for a common KDF. Particularly where I am facing Yet Another KDF in IEEE 802.15.6! Can we have a new draft posted as 00.txt has expired and is gone and I am in the 802.15.6 meetings right now and I want to bring this to the attention of the group? From dbrown@certicom.com Thu Jan 21 08:16:38 2010 Return-Path: X-Original-To: cfrg@core3.amsl.com Delivered-To: cfrg@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id D9F5A3A6A4E for ; Thu, 21 Jan 2010 08:16:38 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.457 X-Spam-Level: X-Spam-Status: No, score=-4.457 tagged_above=-999 required=5 tests=[AWL=-0.744, BAYES_05=-1.11, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=1.396, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R01S6suTfQFG for ; Thu, 21 Jan 2010 08:16:38 -0800 (PST) Received: from mhs04ykf.rim.net (mhs04ykf.rim.net [216.9.243.82]) by core3.amsl.com (Postfix) with ESMTP id A3BCC3A6A7C for ; Thu, 21 Jan 2010 08:16:37 -0800 (PST) X-AuditID: 0a666446-b7b3bae000000a61-ac-4b587de0f808 Received: from XCH39YKF.rim.net ( [10.64.31.40]) by mhs04ykf.rim.net (RIM Mail) with SMTP id 27.1F.02657.0ED785B4; Thu, 21 Jan 2010 11:16:32 -0500 (EST) Received: from XCH57YKF.rim.net ([10.64.31.54]) by XCH39YKF.rim.net with Microsoft SMTPSVC(6.0.3790.3959); Thu, 21 Jan 2010 11:16:31 -0500 X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01CA9AB4.F4FD5EA1" Date: Thu, 21 Jan 2010 11:11:58 -0500 Message-ID: <7E1DF37F1F42AB4E877E492C308E6AC402D1F4A0@XCH57YKF.rim.net> In-Reply-To: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [Cfrg] existing KDFs and their uses Thread-Index: AcpTbF+WEWNM8XUyTQiVL7Y//h45LhHR6mxg References: <3AB03D25-328B-4595-855C-A75B92C89295@cisco.com> From: "Dan Brown" To: "Hugo Krawczyk" X-OriginalArrivalTime: 21 Jan 2010 16:16:31.0969 (UTC) FILETIME=[1839F510:01CA9AB5] X-Brightmail-Tracker: AAAAAgAAAZESh7up Cc: cfrg@irtf.org Subject: Re: [Cfrg] existing KDFs and their uses X-BeenThere: cfrg@irtf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Crypto Forum Research Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 21 Jan 2010 16:16:39 -0000 This is a multi-part message in MIME format. ------_=_NextPart_001_01CA9AB4.F4FD5EA1 Content-Type: text/plain; charset="us-ascii" content-transfer-encoding: quoted-printable Hi Hugo, I just noticed NIST Special Publication 800-108, which, like HKDF, is based on the ideas of extract-then-expand. It has HMAC and CMAC based options. How does it fare in your view? Especially, does have it security similar to HKDF? Best regards, Dan From: cfrg-bounces@irtf.org [mailto:cfrg-bounces@irtf.org] On Behalf Of Hugo Krawczyk Sent: Thursday, October 22, 2009 7:07 PM To: David McGrew Cc: cfrg@irtf.org Subject: Re: [Cfrg] existing KDFs and their uses David, this work that you are doing in compiling usage scenarios and existing KDFs is VERY useful. Hopefully, you can put it as a separate document. I am very interested to know if there is anything, except passwords, for which plain HKDF is insufficient. I am interested in applications that require the KDF to generate regular random keys rather than some structured elements (such as group elements that require dedicated group-specific techniques). Thanks! Hugo ---------------------------------------------------------------------=0A= This transmission (including any attachments) may contain confidential infor= mation, privileged material (including material protected by the solicitor-c= lient or other applicable privileges), or constitute non-public information.= Any use of this information by anyone other than the intended recipient is= prohibited. If you have received this transmission in error, please immedia= tely reply to the sender and delete this information from your system. Use,= dissemination, distribution, or reproduction of this transmission by uninte= nded recipients is not authorized and may be unlawful. ------_=_NextPart_001_01CA9AB4.F4FD5EA1 Content-Type: text/html; charset="us-ascii" content-transfer-encoding: quoted-printable

Hi Hugo,

 

I just noticed NIST Special Publication 800-108, which, like HKDF, is based on the ideas of extract-then-expand.  It has HMAC and CM= AC based options.  How does it fare in your view?  Especially, does have it= security similar to HKDF?

 

Best regards,

 

Dan

 

From: cfrg-bounces@irtf.org [mailto:cfrg-bounces@irtf.org] On Behalf Of Hug= o Krawczyk
Sent: Thursday, October 22, 2009 7:07 PM
To: David McGrew
Cc: cfrg@irtf.org
Subject: Re: [Cfrg] existing KDFs and their uses

 

David, this work that you are doing in compiling usage scenarios and existing KDFs is VERY useful. Hopefully, you can put it as a separate document. I am very interested to know if there is anything, except passwords, for which plain HKDF is insufficient.

I am interested in applications that require the KDF to generate regular ran= dom keys rather than some structured elements (such as group elements that requi= re dedicated group-specific  techniques).

Thanks!

Hugo

---------------------------------------------------------------------
= =0A= This transmission (including any attachments) may contain confidential infor= mation, privileged material (including material protected by the solicitor-c= lient or other applicable privileges), or constitute non-public information.= Any use of this information by anyone other than the intended recipient is= prohibited. If you have received this transmission in error, please immedia= tely reply to the sender and delete this information from your system. Use,= dissemination, distribution, or reproduction of this transmission by uninte= nded recipients is not authorized and may be unlawful. ------_=_NextPart_001_01CA9AB4.F4FD5EA1-- From paul.hoffman@vpnc.org Tue Jan 26 09:14:06 2010 Return-Path: X-Original-To: cfrg@core3.amsl.com Delivered-To: cfrg@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 262BE3A681B for ; Tue, 26 Jan 2010 09:14:06 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.037 X-Spam-Level: X-Spam-Status: No, score=-6.037 tagged_above=-999 required=5 tests=[AWL=0.009, BAYES_00=-2.599, HELO_MISMATCH_COM=0.553, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZxeDjOakOlkI for ; Tue, 26 Jan 2010 09:14:05 -0800 (PST) Received: from balder-227.proper.com (Balder-227.Proper.COM [192.245.12.227]) by core3.amsl.com (Postfix) with ESMTP id B10EF3A67DB for ; Tue, 26 Jan 2010 09:14:04 -0800 (PST) Received: from [10.20.30.158] (75-101-30-90.dsl.dynamic.sonic.net [75.101.30.90]) (authenticated bits=0) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id o0QGQc5I083738 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Tue, 26 Jan 2010 09:26:39 -0700 (MST) (envelope-from paul.hoffman@vpnc.org) Mime-Version: 1.0 Message-Id: Date: Tue, 26 Jan 2010 08:26:36 -0800 To: cfrg@irtf.org From: Paul Hoffman Content-Type: text/plain; charset="us-ascii" Subject: [Cfrg] Fwd: Last Call: draft-krawczyk-hkdf (HMAC-based Extract-and-Expand Key Derivation Function (HKDF)) to Informational RFC X-BeenThere: cfrg@irtf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Crypto Forum Research Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jan 2010 17:14:06 -0000 >X-Original-To: ietf-announce@ietf.org >Delivered-To: ietf-announce@core3.amsl.com >X-idtracker: yes >To: IETF-Announce >From: The IESG >Subject: Last Call: draft-krawczyk-hkdf (HMAC-based Extract-and-Expand Key > Derivation Function (HKDF)) to Informational RFC >Date: Tue, 26 Jan 2010 07:36:46 -0800 (PST) >X-BeenThere: ietf-announce@ietf.org >X-Mailman-Version: 2.1.9 >Reply-To: ietf@ietf.org >List-Id: "IETF announcement list. No discussions." >List-Unsubscribe: , > >List-Archive: >List-Post: >List-Help: >List-Subscribe: , > >Sender: ietf-announce-bounces@ietf.org > >The IESG has received a request from an individual submitter to consider >the following document: > >- 'HMAC-based Extract-and-Expand Key Derivation Function (HKDF) ' > as an Informational RFC > >The IESG plans to make a decision in the next few weeks, and solicits >final comments on this action. Please send substantive comments to the >ietf@ietf.org mailing lists by 2010-02-23. Exceptionally, >comments may be sent to iesg@ietf.org instead. In either case, please >retain the beginning of the Subject line to allow automated sorting. > >The file can be obtained via >http://www.ietf.org/internet-drafts/draft-krawczyk-hkdf-01.txt > > >IESG discussion can be tracked via >https://datatracker.ietf.org/public/pidtracker.cgi?command=view_id&dTag=18675&rfc_flag=0 > >_______________________________________________ >IETF-Announce mailing list >IETF-Announce@ietf.org >https://www.ietf.org/mailman/listinfo/ietf-announce --Paul Hoffman, Director --VPN Consortium