| < draft-merkle-tls-brainpool-00.txt | draft-merkle-tls-brainpool-01.txt > | |||
|---|---|---|---|---|
| Network Working Group J. Merkle | Network Working Group J. Merkle | |||
| Internet-Draft secunet Security Networks | Internet-Draft secunet Security Networks | |||
| Updates: 4492 (if approved) M. Lochter | Updates: 4492 (if approved) M. Lochter | |||
| Intended status: Informational Bundesamt fuer Sicherheit in der | Intended status: Informational Bundesamt fuer Sicherheit in der | |||
| Expires: May 9, 2013 Informationstechnik (BSI) | Expires: November 14, 2013 Informationstechnik (BSI) | |||
| November 5, 2012 | May 13, 2013 | |||
| ECC Brainpool Curves for Transport Layer Security (TLS) | ECC Brainpool Curves for Transport Layer Security (TLS) | |||
| draft-merkle-tls-brainpool-00 | draft-merkle-tls-brainpool-01 | |||
| Abstract | Abstract | |||
| This document specifies the use of several ECC Brainpool elliptic | This document specifies the use of several ECC Brainpool elliptic | |||
| curves for authentication and key exchange in the Transport Layer | curves for authentication and key exchange in the Transport Layer | |||
| Security (TLS) protocol. | Security (TLS) protocol. | |||
| Status of This Memo | Status of This Memo | |||
| This Internet-Draft is submitted in full conformance with the | This Internet-Draft is submitted in full conformance with the | |||
| skipping to change at page 1, line 34 ¶ | skipping to change at page 1, line 34 ¶ | |||
| Internet-Drafts are working documents of the Internet Engineering | Internet-Drafts are working documents of the Internet Engineering | |||
| Task Force (IETF). Note that other groups may also distribute | Task Force (IETF). Note that other groups may also distribute | |||
| working documents as Internet-Drafts. The list of current Internet- | working documents as Internet-Drafts. The list of current Internet- | |||
| Drafts is at http://datatracker.ietf.org/drafts/current/. | Drafts is at http://datatracker.ietf.org/drafts/current/. | |||
| Internet-Drafts are draft documents valid for a maximum of six months | Internet-Drafts are draft documents valid for a maximum of six months | |||
| and may be updated, replaced, or obsoleted by other documents at any | and may be updated, replaced, or obsoleted by other documents at any | |||
| time. It is inappropriate to use Internet-Drafts as reference | time. It is inappropriate to use Internet-Drafts as reference | |||
| material or to cite them other than as "work in progress." | material or to cite them other than as "work in progress." | |||
| This Internet-Draft will expire on May 9, 2013. | This Internet-Draft will expire on November 14, 2013. | |||
| Copyright Notice | Copyright Notice | |||
| Copyright (c) 2012 IETF Trust and the persons identified as the | Copyright (c) 2013 IETF Trust and the persons identified as the | |||
| document authors. All rights reserved. | document authors. All rights reserved. | |||
| This document is subject to BCP 78 and the IETF Trust's Legal | This document is subject to BCP 78 and the IETF Trust's Legal | |||
| Provisions Relating to IETF Documents | Provisions Relating to IETF Documents | |||
| (http://trustee.ietf.org/license-info) in effect on the date of | (http://trustee.ietf.org/license-info) in effect on the date of | |||
| publication of this document. Please review these documents | publication of this document. Please review these documents | |||
| carefully, as they describe your rights and restrictions with respect | carefully, as they describe your rights and restrictions with respect | |||
| to this document. Code Components extracted from this document must | to this document. Code Components extracted from this document must | |||
| include Simplified BSD License text as described in Section 4.e of | include Simplified BSD License text as described in Section 4.e of | |||
| the Trust Legal Provisions and are provided without warranty as | the Trust Legal Provisions and are provided without warranty as | |||
| skipping to change at page 3, line 15 ¶ | skipping to change at page 3, line 15 ¶ | |||
| 1. Introduction | 1. Introduction | |||
| In [RFC5639], a new set of elliptic curve groups over finite prime | In [RFC5639], a new set of elliptic curve groups over finite prime | |||
| fields for use in cryptographic applications was specified. These | fields for use in cryptographic applications was specified. These | |||
| groups, denoted as ECC Brainpool curves, were generated in a | groups, denoted as ECC Brainpool curves, were generated in a | |||
| verifiably pseudo-random way and comply with the security | verifiably pseudo-random way and comply with the security | |||
| requirements of relevant standards from ISO [ISO1] [ISO2], ANSI | requirements of relevant standards from ISO [ISO1] [ISO2], ANSI | |||
| [ANSI1], NIST [FIPS], and SecG [SEC2]. | [ANSI1], NIST [FIPS], and SecG [SEC2]. | |||
| Usage of elliptic curves for authentication and key agreement in TLS | Usage of elliptic curves for authentication and key agreement in TLS | |||
| 1.1 and TLS 2.0 is defined in [RFC4492]. While the ASN.1 object | 1.0 and TLS 1.1 is defined in [RFC4492]. While the ASN.1 object | |||
| identifiers defined in [RFC5639] already allow usage of the ECC | identifiers defined in [RFC5639] already allow usage of the ECC | |||
| Brainpool curves for TLS (client or server) authentication through | Brainpool curves for TLS (client or server) authentication through | |||
| reference in X.509 certificates according to [RFC3279], their | reference in X.509 certificates according to [RFC3279], their | |||
| negotiation for key exchange according to [RFC4492] requires the | negotiation for key exchange according to [RFC4492] requires the | |||
| definition and assignment of additional NamedCurve IDs. This | definition and assignment of additional NamedCurve IDs. This | |||
| document specifies such values for three curves from [RFC5639]. | document specifies such values for three curves from [RFC5639]. | |||
| 2. Values to be Used in the Supported Elliptic Curve Extension | 2. Values to be Used in the Supported Elliptic Curve Extension | |||
| According to [RFC4492], the Supported Elliptic Curve Extension allows | According to [RFC4492], the Supported Elliptic Curve Extension allows | |||
| End of changes. 5 change blocks. | ||||
| 6 lines changed or deleted | 6 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||