[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: allocation of key material into keys
Here's a rephrase which I think is more precise. Let me know if this
is not what you intended..
I'd like to propose that the key management protocol
specifications only be responsible for generating a "blob" of
key material at least N bits long containing at least K bits of
entropy. For obvious reasons, K <= N.
Each transform would need to specify minimum values for K and
N, and precisely how to transform a variable-length "blob"
of key material of at least N bits into the session keys, initial
sequence numbers, and other shared state it needs.
---
I think this is also more-or-less what Hilary suggested last week some
time. She used "VPI" instead of "blob", but I don't think that's an
important difference here.. :-)
- Bill
Follow-Ups: